How to configure non-priveleged LDAP bind in FreeRADIUS 3.0.11
Alan DeKok
aland at deployingradius.com
Tue Jul 23 22:08:15 CEST 2019
On Jul 23, 2019, at 4:03 PM, Kev Xlr <kevxlre at gmail.com> wrote:
>
> Is LDAP bind authentication possible with PEAP?
It's impossible.
http://deployingradius.com/documents/protocols/compatibility.html
> Or is there another supported protocol that does not require configuration of client certificates on iOS or Windows, as does EAP-TTLS?
EAP-TTLS does not require client certificates.
> Auth-Type := LDAP was set in inner-tunnel (in given listed file location) but it was at the end of the authorize section, and below Proxy-To-Realm, so I commented out that Proxy-To-Realm line
You shouldn't comment it out that Proxy-To-Realm line.
You SHOULD set Auth-Type := LDAP.
Alan DeKok.
More information about the Freeradius-Users
mailing list