Algorithm used by FreeRADIUS to choose cipher suite used with EAP-TLS/TTLS

Walter Goulet wgoulet at
Thu Feb 15 20:59:39 CET 2007


How does FreeRADIUS's rlm_eap module choose the cipher suite used for
EAP-TLS/TTLS sessions?

RFC 2246 for TLS states that the client presents the list of
ciphersuites supported to the server and the server picks one that it

Is there a way to configure FreeRADIUS to only use a specific set of
ciphersuites? The goal is that in some cases it may be desireable to
restrict incoming clients to use a particular suite.


More information about the Freeradius-Users mailing list