LDAP Filter

Alan DeKok aland at deployingradius.com
Tue Nov 22 09:52:24 CET 2011

Houston-III, Lester L wrote:
> I have a LDAP server performing authentication on FR clients where
> EAP-TLS is being used as the mechanism, but the LDAP module is not using
> TLS. 

  That's how TLS works.

> Is there a way to use the client certificate common-name as the
> UID in the LDAP authentication.

  Not really.  There are a few issues here.  TLS *does* authentication.
 So saying you want LDAP authentication for TLS makes no sense.  There's
no password, so you can't "authenticate" anyone via LDAP.

  What do you really want to do?  Talk about problems, not solutions.

  Alan DeKok.

More information about the Freeradius-Users mailing list