Authentication using LDAP for 802.1x
Olivier Beytrison
olivier at heliosnet.org
Wed Jun 19 16:32:25 CEST 2013
On 19.06.2013 16:02, A.L.M.Buxey at lboro.ac.uk wrote:
> Hi,
>
>> Some other comments -
>>
>> Upgrade from 2.1.12 to 2.2.x, as there are security issues pre
>> 2.2.x.
>>
>> Save yourself some round trip packets by setting default_eap_type
>> = ttls in eap.conf
>>
>> Save yourself some LDAP lookups by removing ldap from the outer.
>
> ..and save some more hits to LDAP by wrapping the call to it in the
> authorization stage to just the EAP Identity packet :-)
That's pretty interesting, what's the if() you're doing to achieve that?
--
Olivier Beytrison
Network & Security Engineer, HES-SO Fribourg
Mail: olivier at heliosnet.org
More information about the Freeradius-Users
mailing list