forming Tunnel with TLS

Alan DeKok aland at
Mon Jul 4 18:00:14 CEST 2005

"kiran kumar gullapalli" <kirangullapalli at> wrote:
> Is it possible with free RADIUS to form tunnel directly between two
> radius servers which dont have any shared secret between them but
> knowing each other IP address. Means by forming the secret
> dynamically with TLS handshaking?

  No.  There is a spec available, though, from the RADIATOR people.
They implemented something similar a few months ago.

  See "radsec".  It's possible to implement with FreeRADIUS, but it's
probably easiest to do with another daemon, that just does
TLS<->RADIUS translations.

  Alan DeKok.

More information about the Freeradius-Users mailing list