Freeradius + LDAP for WPA-Enterprise

Max Schröder max.schroeder2 at uni-rostock.de
Fri Feb 11 21:31:22 CET 2011


Gary Gatten wrote:
> You forced ALL Authentication requests to use LDAP.  EAP / LDAP don't play well together.  Remove the "Auth Type LDAP" - for now.
>   
If I remove that the radtest failed for a LDAP-User. It returns a 
rejected Message.
> As for accomplishing your goal, unfortunately others will have to help you with that - I don't know FR/LDAP/EAP well enough.  But, I don't THINK you can authenticate EAP requests against LDAP directly because of the "no clear text password" issue.
>   
How else would you authenticate a WPA(2)-Enterprise with Radius using 
LDAP-Accounts?



More information about the Freeradius-Users mailing list