EAP-GTC w/ "PAP-like" LDAP authentication
Alan DeKok
aland at deployingradius.com
Tue Jan 29 20:03:37 CET 2019
On Jan 29, 2019, at 2:00 PM, Ian Pilcher <arequipeno at gmail.com> wrote:
>
> On 1/28/19 2:40 PM, Alan DeKok wrote:
>> That's what the "auth_type" setting is for on the EAP GTC module
>> configuration. Set it to something else. e.g. "ldap". And then make
>> sure that "ldap" is listed in the "authenticate" section of the
>> inner-tunnel virtual server.
>
> Boom!
>
> That, plus the changes detailed in
> http://lists.freeradius.org/pipermail/freeradius-users/2016-September/084737.html
> makes both EAP-GTC and EAP-TTLS work.
That configuration is intended for a different use-case. While they might work, they're not correct.
My earlier recommendation is the correct approach.
Alan DeKok.
More information about the Freeradius-Users
mailing list