Azure AD and freeradius
Peter Bance
peter at peterbance.co.uk
Thu Mar 31 13:56:32 UTC 2022
You can probably get away with Azure AD + AAD Directory Services (AADDS)
here - not tested myself, as we shifted to certificate-based auth (AAD +
SCEPman).
---
Peter Bance
Information Security Adviser
On 2022-03-31 12:08, a.sinnige at sae.edu wrote:
> Hi all,
>
>
>
> A bit of an open question about Azure.
>
> I currently have running :
>
> AzureAD->on prem AD->samba/ldap-> freeradius
>
> Running every type of hardwarePC/Mac/Phones/BYOD for
> Staff/Students/External Eduroam users.
> Doing user/password type logins for wifi/ethernet/computers etc.. (not
> certs)
>
> Most users are doing PEAP->mschapv2 by default. All without requiring
> to provision devices with profiles/certs.
>
>
>
> This works quite well and THX to all freeradius staff for this
> wonderful product :-)
>
>
> But we are setting up a new company and I was thinking if there is
> maybe a way to cut out the onprem/cloud based AD ?
> So AzureAD->freeradius without losing the capability to do
> TTLS-pap AND Peap-mschapv2 ? (no certificates)
>
>
>
> Any ideas ?
>
> Arjan Sinnige
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list