Is the following possible.
Currently i've got radius+eap-tls working.
When i import the ca certificate+the personal certificate on the client and configure wireless everything is working fine. But i would also like to have pfsense check if the user is a member of a group in active directory (if he is not: access will be blocked even if he has the necessary certificates.
I noticed a tab ldap in radius and enable ldap support en general configuration server 1.
Is this the place where i need to be to achieve what i want ? Are there links to manuals ?
thanks in advance
I'm in this exact same situation. Did you ever find an answer to this one?