We support pam confirmation of the certificate ID, and soon GSSAPI. I think GSSAPI can integrate with active directory.
Another alternative is EAP-TLS or EAP-MSCHAPv2 support which we also don't have yet (although we listed it as google Summer of code project so a student might pick this up) Paul Sent from my iPhone > On Mar 28, 2017, at 11:34, Computerisms Corporation <[email protected]> > wrote: > > Hi Gurus, > > I know how to setup l2tp with active directory authentication, but as I read > every where the l2tp is dead, I am wondering if there is a way to integrate > it with ikev2. I have looked through the various options, and I don't find a > way to hook it to ldap or freeradius, which I am guessing is how it would > have to accomplished. Wondering if anyone has any thoughts or experience? > -- > Bob Miller > Cell: 867-334-7117 > Office: 867-633-3760 > www.computerisms.ca > _______________________________________________ > Swan mailing list > [email protected] > https://lists.libreswan.org/mailman/listinfo/swan _______________________________________________ Swan mailing list [email protected] https://lists.libreswan.org/mailman/listinfo/swan
