3.0.14 TLS Session Cache
doug.wussler at fsu.edu
Wed Jun 7 16:49:40 CEST 2017
If I set the “name” and “persist_dir” parameters in the “cache” section of the “tls-config”
in mods-enabled/eap, the TLS Session cache works as expected and users can perform a fast reconnect.
But if I don’t care about the TLS cache persisting across a server reboot, am I supposed to be able
to comment out the “persist_dir” parameter? If I don’t set the “persist_dir” parameter, I cannot
get the TLS session cache to work. If I don’t care about preserving this cache across a server
reboot, I’m thinking it will be more efficient and less maintenance to use only an in-memory
TLS cache. Is an in-memory-only TLS cache an option or is it a requirement that it get written
to and read from disk?
Florida State University
More information about the Freeradius-Users