Enable EAP-TTLS with PrivacyIdea


accordingto some feedback from @cornelinux EAP support only a Challenge-Response, but what EAP-TTLS/PAP?

This would require several sites. Most documentation speak about default and innertunnel, which are both disabled by privacyidea.

  1. is it possible to enable EAP-TTLS with PrivacyIdea
  2. Run PrivacyIdea in the innertunnel

I estimate the default-site must run on a separate port?
and add a “3rd” site as copy of privacyidea and bring this to the innertunnel.
Or did I miss an existing documentation for this?