Authentication using LDAP for 802.1x

Olivier Beytrison olivier at
Wed Jun 19 16:32:25 CEST 2013

On 19.06.2013 16:02, A.L.M.Buxey at wrote:
> Hi,
>> Some other comments -
>> Upgrade from 2.1.12 to 2.2.x, as there are security issues pre
>> 2.2.x.
>> Save yourself some round trip packets by setting default_eap_type
>> = ttls in eap.conf
>> Save yourself some LDAP lookups by removing ldap from the outer.
> ..and save some more hits to LDAP by wrapping the call to it in the
> authorization stage to just the EAP Identity packet :-)

That's pretty interesting, what's the if() you're doing to achieve that?


 Olivier Beytrison
 Network & Security Engineer, HES-SO Fribourg
 Mail: olivier at

More information about the Freeradius-Users mailing list