20 Feb
2023
20 Feb
'23
7:05 a.m.
hi, thought you'd had an answer from Alan? basically, with PEAP this couldnt work as the password is never sent to you so you couldnt check against Azure AD - however, you are using EAP-TTLS/PAP which means the client does provide password....and so you can do an LDAP bind using those details to check its okay (LDAP in this case being a way of checking the password by using it rather than an oracle supplying it. you need to look in the config (sites-available/* for those places where ldap is mentioned....especially in the AuthZ part, not just AuthN part basically, tell the server that Auth-Type := LDAP alan