question about freeradius, 802.1x with peap, auth via LDAP

Ryan Kramer rkramer at
Wed Apr 4 18:35:11 CEST 2007

1)  Microsoft LDAP isn't like normal ldap, you don't get access to the
password.  To have freeradius touch the password at any point, it needs to
be on the domain and do a ntlm_auth instead of ldap.

On 4/4/07, wenny wang <wang.wennywang at> wrote:
> Hi,
> I need help/advise with te following scenario:
> 1. I have a freeradius server, this server is not part of Active Directory
> Domain, server is able to perform ldapsearch for user account.
> 2. the workstation is a windows 2000 pc, need to be authenticated thru
> Cisco catalyst switch to the freeradius server with user's LAN username and
> password transparently (peap)
> my question is:
> what is the requirement for radius server, does the server needs to be
> part of the Active Directory Domain?, can you direct me to a how to link?, I
> have made several configurations but none were successful, please help,
> thanks.
> -
> List info/subscribe/unsubscribe? See
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the Freeradius-Users mailing list