Hi everyone After studying the tcpdump log between my freeradius and ldap server i realized that freeradius is requesting the password from ldap to authenticate the user. (Turned off SSL to be able to sniff.)
However my ldap does not have the password, instead it acts as a proxy, it needs the password (in case from the radius server) and makes the kerberos KDC to compare them. Then ldap replies back to radius with the authentication reply. Is it possible to make freeradius to _give_ password to the ldap server, instead of requesting it? I believe that my radius has no business making decisions over one's password. Thanks for any help adam - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
