Re: ACL on LDAP
This is a discussion on Re: ACL on LDAP within the FreeRADIUS Users forums, part of the Networking and Network Related category; Um 04:27 Uhr am 15.05.05 schrieb Chan Min Wai: > I'm working with freeradius that running ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
05-16-2005
|
|||
|
|||
Re: ACL on LDAP
Um 04:27 Uhr am 15.05.05 schrieb Chan Min Wai:
> I'm working with freeradius that running EAP auth, the account info is > with LDAP server. =20 > Just want to know what kind of Right did the freeradius need to have on > the LDAP server so that the ACL on the LDAP server can be control. >=20 > Also, I'm abit confused on the Password on LDAP, did we need to "READ" > it or we just have to AUTH with it? If you want to use any CHAP-like authentication method, Freeradius needs =20 a) READ access (through some sort of proxy user) and b) clear text passwords. =20 If you want to use EAP-TTLS, you just need AUTH, but cannot use MSCHAPv2,= =20 but are forced to do something else, like PAP (which is no problem inside= =20 a TTLS "tunnel".) Gr=FC=DFe, Sven. --=20 Sven Hartge -- professioneller Unix-Geek Meine Gedanken im Netz: http://sven.formvision.de/blog/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html 
|
Linear Mode
