EAP-TLS - OpenLDAP - UID Check

_Stefan_H stefanh007 at networld.at
Wed Jan 27 16:25:21 CET 2010




Alan DeKok-2 wrote:
> 
>   EAP-TLS does authentication by checking the certificate, not the user
> name.
> 
>   If you want the LDAP module to reject users who aren't in LDAP, edit
> raddb/sites-enabled/default, the "authorize" section.  Change the line
> saying "ldap" to:
> 
> 	ldap {
> 		notfound = reject
> 	}
> 
>   Alan DeKok.
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
> 
> 

Thanks


-- 
View this message in context: http://old.nabble.com/EAP-TLS---OpenLDAP---UID-Check-tp27326455p27341289.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.




More information about the Freeradius-Users mailing list