EAP-GTC w/ "PAP-like" LDAP authentication

Alan DeKok aland at deployingradius.com
Tue Jan 29 20:03:37 CET 2019


On Jan 29, 2019, at 2:00 PM, Ian Pilcher <arequipeno at gmail.com> wrote:
> 
> On 1/28/19 2:40 PM, Alan DeKok wrote:
>> That's what the "auth_type" setting is for on the EAP GTC module
>> configuration.  Set it to something else. e.g. "ldap".  And then make
>> sure that "ldap" is listed in the "authenticate" section of the
>> inner-tunnel virtual server.
> 
> Boom!
> 
> That, plus the changes detailed in
> http://lists.freeradius.org/pipermail/freeradius-users/2016-September/084737.html
> makes both EAP-GTC and EAP-TTLS work.

  That configuration is intended for a different use-case.  While they might work, they're not correct.

  My earlier recommendation is the correct approach.

  Alan DeKok.




More information about the Freeradius-Users mailing list