[Swan] active directory
Paul Wouters
paul at nohats.ca
Thu Mar 30 03:20:42 UTC 2017
We support pam confirmation of the certificate ID, and soon GSSAPI. I think GSSAPI can integrate with active directory.
Another alternative is EAP-TLS or EAP-MSCHAPv2 support which we also don't have yet (although we listed it as google Summer of code project so a student might pick this up)
Paul
Sent from my iPhone
> On Mar 28, 2017, at 11:34, Computerisms Corporation <bob at computerisms.ca> wrote:
>
> Hi Gurus,
>
> I know how to setup l2tp with active directory authentication, but as I read every where the l2tp is dead, I am wondering if there is a way to integrate it with ikev2. I have looked through the various options, and I don't find a way to hook it to ldap or freeradius, which I am guessing is how it would have to accomplished. Wondering if anyone has any thoughts or experience?
> --
> Bob Miller
> Cell: 867-334-7117
> Office: 867-633-3760
> www.computerisms.ca
> _______________________________________________
> Swan mailing list
> Swan at lists.libreswan.org
> https://lists.libreswan.org/mailman/listinfo/swan
More information about the Swan
mailing list