[Swan] SAML2.0 authentication
Paul Wouters
paul at nohats.ca
Thu Feb 15 15:46:45 EET 2024
No, again the IKEv2 protocol uses EAP for any external authentication mechanism, so it would need to use an existing EAP method. While EAP-mschapv2 could be used, libreswan doesn’t support that yet.
The pam-authorize=yes method is only a method to reject a connection based on remote ID, not to verify a password.
Paul
Sent using a virtual keyboard on a phone
> On Feb 15, 2024, at 07:34, David Valiente <fierce.brake at gmail.com> wrote:
>
>
> What about PAM, Can it be done via a PAM module?
>
> And thanks for your reply and clarification!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20240215/93748d55/attachment.htm>
More information about the Swan
mailing list