EAP-TTLS-PAP with LDAP Authentication to Azure AD Domain Services

IP ip.infos at gmail.com
Wed Jul 10 10:57:16 CEST 2019


Il giorno mer 10 lug 2019 alle ore 09:12 Alan DeKok
<aland at deployingradius.com> ha scritto:
>
>
>   Active Directory does not return a password to FreeRADIUS.  So FreeRADIUS can't authenticate the user.
>
>   Most LDAP servers will return a password to FreeRADIUS.  Active Directory isn't entirely an LDAP server.
>

Thanks Alan
With radtest I've been able to authenticate the user, so my idea is to
implement radius as authentication oracle system

>
>  Read sites-available/default.  Look for:
>
>         #  Uncomment it if you want to use ldap for authentication
>
>   And then uncomment the block, and follow the instructions.
>

ldap section is uncommented but the issue persist.

Basically the goal is to implement 802.1x using AD as user database
I'd prefer to do not authenticate using winbind so I've started with ldap
Unfortunately I've not big experience with this tools...

Can you point me on the right direction?

Thanks in advance

-- 
IP


More information about the Freeradius-Users mailing list