Tunnel TLS Authentication with PAP

alan buxey A.L.M.Buxey at lboro.ac.uk
Tue May 29 16:24:42 CEST 2012


Hi,

>    because im using CA� certificate(ca.pem) of the radius in the client side
>    ,�� server and client communication should be secure ...correct me if im�
>    worng..

yes, secure - well, so long as the client is configured to only trust that
CA and the CN of the real RADIUS server....

>    i just want to know , is these details are secure to send password via
>    network , because when i ran radius in debug mode i can see the password
>    in clear text.

you can read it in clear text because its the server! it KNOWS the password because
1) its PAP and 2) it HAS to know the password to be able to authenticate!

alan


More information about the Freeradius-Users mailing list