On Wed, Dec 8, 2010 at 9:50 AM, Robert Masters <RMasters@bunnings.com.au> wrote:
An alternate path would be to convince FreeRadius to obtain the user-supplied password via EAP-GTC *before* connecting to OID to authenticate the user, if that is possible. (None of the doco I have read to date suggests that it is.)
That is possible. Have you read the reply I sent to your previous mail? http://www.mail-archive.com/freeradius-users@lists.freeradius.org/msg66872.h... Note that if you go that route it's not enough to simply configure FreeRadius to use EAP-GTC. You must configure all clients to do EAP-GTC as well.
Does anyone have any suggestions?
It works for Lotus Domino's LDAP. It should work as well for any LDAP server that allows bind as a user. -- Fajar