EAP-PEAP with LDAP for 802.1x authentication

Sergio Belkin sebelk at gmail.com
Mon Feb 25 11:34:27 CET 2008


2008/2/25, Ryan <majereryan at gmail.com>:
> Hi All,
>
>  Understand that it is not possible to authenticate using EAP-PEAP
>  against OpenLDAP due to encrypted password. Can someone advise on how
>  exactly OpenLDAP needs be configured so that it can be used in
>  EAP-PEAP?
>
>  I found out from http://vuksan.com/linux/dot1x/802-1x-LDAP.html that
>  to do so additional attributes needs to be added to LDAP. Is this the
>  only way?
>
>  Thanks/Regards,
>
> Ryan
>  -
>  List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
I think that the easiest way is using EAP-TTLS if you use encrypted
password into OpenLDAP, you should use PAP. The problem is that
Windows has not native PAP support, so you should  use something like
securew2. The other option is that the Ivan Kalikmention it (something
that I asked many times :)  )
-- 
--
Open Kairos http://www.openkairos.com
Watch More TV http://sebelk.blogspot.com
Sergio Belkin -



More information about the Freeradius-Users mailing list