27 Jan
2010
27 Jan
'10
10:25 a.m.
Alan DeKok-2 wrote:
EAP-TLS does authentication by checking the certificate, not the user name.
If you want the LDAP module to reject users who aren't in LDAP, edit raddb/sites-enabled/default, the "authorize" section. Change the line saying "ldap" to:
ldap { notfound = reject }
Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Thanks -- View this message in context: http://old.nabble.com/EAP-TLS---OpenLDAP---UID-Check-tp27326455p27341289.htm... Sent from the FreeRadius - User mailing list archive at Nabble.com.