How to configure non-priveleged LDAP bind in FreeRADIUS 3.0.11

Alan DeKok aland at
Tue Jul 23 22:08:15 CEST 2019

On Jul 23, 2019, at 4:03 PM, Kev Xlr <kevxlre at> wrote:
> Is LDAP bind authentication possible with PEAP?

  It's impossible.

> Or is there another supported protocol that does not require configuration of client certificates on iOS or Windows, as does EAP-TTLS?

   EAP-TTLS does not require client certificates.

> Auth-Type := LDAP was set in inner-tunnel (in given listed file location) but it was at the end of the authorize section, and below Proxy-To-Realm, so I commented out that Proxy-To-Realm line

  You shouldn't comment it out that Proxy-To-Realm line.

  You SHOULD set Auth-Type := LDAP.

  Alan DeKok.

More information about the Freeradius-Users mailing list