Why? Its not a RADIUS thing. It's an HTTPS thing - which is documented in FAQs elsewhere in their world. You can assume that when using HTTPS all client communication with the web server over that channel is secured by that SSL mechanism. (Let's ignore insecure certificates, MITM attacks, weak ciphers, various SSL attacks etc) alan