freeradius 2.05 peap and ldap bind?
Tim Tyler
tyler at beloit.edu
Wed Jun 11 18:54:46 CEST 2008
Freeradius experts,
We just installed freeradius 2.05 on a Centos 5 system. We got
PEAP working rather quickly against our ldap server against LM/NT
passwords. We would also like to allow clients using Securew2
supplicants configured for TTLS -PAP connections against (crypt and
SSHA) passwords stored in our ldap database.
I presume we need to do an ldap bind? How do I configure TTLS-pap
requests to do an ldap bind for authorization/authentication without
breaking PEAP in 2.05? which 2.05 config file(s) will handle this directly?
Note:
In the old 1.x configs, I used to use the following authorize and
authentication configs show below to allow secureW2 users configured
with TTLS-pap to work:
authorize {
preprocess
chap
mschap
suffix
eap
ldap
}
authenticate {
Auth-Type PAP {
pap
}
Auth-Type CHAP {
chap
}
Auth-Type MS-CHAP {
mschap
}
unix
Auth-Type LDAP {
ldap
}
eap
}
Tim Tyler
Network Engineer - Beloit College
tyler at beloit.edu
More information about the Freeradius-Users
mailing list