9 Apr
2013
9 Apr
'13
4:27 a.m.
On Tue, Apr 9, 2013 at 2:52 PM, Muhammad Nuzaihan Kamal Luddin <muhammad@taqisystems.com> wrote:
Hi,
I have read on the archives regarding the above issue and that the RADIUS shared secret is an obfuscation method of securing the communications between the NAS and RADIUS Server.
One method i have read is by using IPSec
... or whatever private tunnel you can create between NAS and radius, e.g. openvpn, PPTP, etc.
but i am asking around if there are other ideas that i may not have thought of.
Depending on what you use the radius for, you might get away by ONLY allowing (T)TLS/EAP along with strict cert checking. -- FAN