We would like to use PrivacyIDEA as authentication provider for PaloAlto Globalprotect VPN.
We installed PI on Ubuntu 18.04, created an admin user and via the WebGUI connected to our AD server (SAMBA based). This all went fine, we can read out AD users.
Finally we installed the Freeradius plugin (apt-get install privacyidea-radius), but here we are stuck… How to configure this ?
No.
In this case you do not configure any RADIUS in the WebUI.
All RADIUS specific stuff in the WebUI is, if privacyIDEA sends requests to another RADIUS server.
It is sufficient to configure the clients.conf. Configure your **** PaloAlto accordingly.