[RADIATOR] AuthByFreeRaidusSQL and EAP authentication
Heikki Vatiainen
hvn at open.com.au
Wed Jul 29 12:34:08 UTC 2020
On 27.7.2020 19.16, Brandon Shiers wrote:
> Will it support EAPTLS for authentication out in front of the actual
> database lookup for the username, password and reply attributes?
Is that EAP-TLS or EAP-TTLS? With EAP-TLS a password is not needed and
SQL can be optionally be used to check that the certificate subject is
known. It can also fetch reply attributes. I'm not sure I have used with
Freeradius SQL but with AuthBy SQL it works.
With EAP-TTLS it should also work with SQL backend, but I don't think
I've yet tried with Freeradius specific module.
The certificate problems are not related to this because they happen
before SQL access.
Thanks,
Heikki
--
Heikki Vatiainen <hvn at open.com.au>
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, TACACS+, PAM, Active Directory,
EAP, TLS, TTLS, PEAP, WiMAX, RSA, Vasco, Yubikey, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, etc.
More information about the radiator
mailing list