EAP-TTLS/PAP with OpenLDAP user store

Stefano Zanmarchi zanmarchi at gmail.com
Wed Mar 7 15:20:52 CET 2012


On Wed, Mar 7, 2012 at 1:58 AM, Fajar A. Nugraha <list at fajar.net> wrote:
> I assume you've seen http://wiki.freeradius.org/Rlm_ldap ?
>
> Basically you need to determine:
> - which LDAP attribute stores the password (e.g. userPassword? something else?)
> - does the attribute store the password with header (e.g {md5})?
> - is the mapping in ldap.attrmap correct?

Hi Fajar,
I followed your advice and it is working now (without Auth-Type LDAP
in the authenticate section);
just one note: I needed to set auto_header to yes in the modules/pap
file to have pap work with
the hashed passwords stored in the directory.
Thanks again!


More information about the Freeradius-Users mailing list