On Wed, Dec 8, 2010 at 9:50 AM, Robert Masters <rmast...@bunnings.com.au> wrote: > An alternate path would be to convince FreeRadius to obtain the > user-supplied password via EAP-GTC *before* connecting to OID to > authenticate the user, if that is possible. (None of the doco I have > read to date suggests that it is.)
That is possible. Have you read the reply I sent to your previous mail? http://www.mail-archive.com/freeradius-users@lists.freeradius.org/msg66872.html Note that if you go that route it's not enough to simply configure FreeRadius to use EAP-GTC. You must configure all clients to do EAP-GTC as well. > > Does anyone have any suggestions? It works for Lotus Domino's LDAP. It should work as well for any LDAP server that allows bind as a user. -- Fajar - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html