forming Tunnel with TLS
Alan DeKok
aland at ox.org
Mon Jul 4 18:00:14 CEST 2005
"kiran kumar gullapalli" <kirangullapalli at rediffmail.com> wrote:
> Is it possible with free RADIUS to form tunnel directly between two
> radius servers which dont have any shared secret between them but
> knowing each other IP address. Means by forming the secret
> dynamically with TLS handshaking?
No. There is a spec available, though, from the RADIATOR people.
They implemented something similar a few months ago.
See "radsec". It's possible to implement with FreeRADIUS, but it's
probably easiest to do with another daemon, that just does
TLS<->RADIUS translations.
Alan DeKok.
More information about the Freeradius-Users
mailing list