Hi list, I'm sorry if this message is somehow lame, but I need to get some more understanding of the different options offered by FreeRADIUS and the standards to decide how to use it. I want users to be able to authenticate over an insecure link (wireless for example) and then to be able to use that link with maximum privacy. My users profiles are stored in an LDAP directory. I would like to use EAP-TLS as it is supported in most OSs to exchange data with the user about the establishment of an IPsec tunnel (using AH in tunneling mode).
Is that possible ? I believe I read something about LDAP and EAP-TLS being incompatible and I couldn't find anything about using EAP-TLS for anything but PPP. Do you have any pointers to any documentation which would help me understand EAP-TLS and EAP-TTLS better ? Would you advise another way of authenticating users and establishing the tunnel ? Thanks for your answers, -- Alain Perry
signature.asc
Description: This is a digitally signed message part
