No, again the IKEv2 protocol uses EAP for any external authentication mechanism, so it would need to use an existing EAP method. While EAP-mschapv2 could be used, libreswan doesn’t support that yet.
The pam-authorize=yes method is only a method to reject a connection based on remote ID, not to verify a password. Paul Sent using a virtual keyboard on a phone > On Feb 15, 2024, at 07:34, David Valiente <[email protected]> wrote: > > > What about PAM, Can it be done via a PAM module? > > And thanks for your reply and clarification!
_______________________________________________ Swan mailing list [email protected] https://lists.libreswan.org/mailman/listinfo/swan
