3.0.14 TLS Session Cache

Wussler, Doug doug.wussler at fsu.edu
Wed Jun 7 16:49:40 CEST 2017

If I set the “name” and “persist_dir” parameters in the “cache” section of the “tls-config”
in mods-enabled/eap, the TLS Session cache works as expected and users can perform a fast reconnect.
But if I don’t care about the TLS cache persisting across a server reboot, am I supposed to be able
to comment out the “persist_dir” parameter?  If I don’t set the “persist_dir” parameter, I cannot
get the TLS session cache to work.  If I don’t care about preserving this cache across a server
reboot, I’m thinking it will be more efficient and less maintenance to use only an in-memory
TLS cache.  Is an in-memory-only TLS cache an option or is it a requirement that it get written
to and read from disk?

Doug Wussler
Florida State University

More information about the Freeradius-Users mailing list