Hello,
Been a huge fan of what Alta Labs has accomplished in the short time they been around, I love how the stuff just works.
I was wondering if there is any news to share on radsec support for both wired and wireless side of things.
After some searching I found some older AP release notes: AP - Release Notes (Version 2.0v) there appears to be initial work done to make radsec possible, but couldn’t find anything further.
We do support Radsec on the APs themselves!
Here is an example of how it could be done, with Orion (this is the power-user config):
{
“radsec”: {
“tls”: {
“default”: {
“cacerts”: {
“0de90ce2.0”:
“-----BEGIN CERTIFICATE-----
…
-----END CERTIFICATE-----”,
“238d1594.0”:
“-----BEGIN CERTIFICATE-----
…
-----END CERTIFICATE-----”,
“572c865c.0”:
“-----BEGIN CERTIFICATE-----
…
-----END CERTIFICATE-----”,
“e9f4548c.0”:
“-----BEGIN CERTIFICATE-----
…
-----END CERTIFICATE-----”,
“bw.radsec.cacert.pem”:
“-----BEGIN CERTIFICATE-----
…
-----END CERTIFICATE-----”,
“openroaming.root.cacert.pem”:
“-----BEGIN CERTIFICATE-----
…
-----END CERTIFICATE-----”
},
“cert”:
“-----BEGIN CERTIFICATE-----
INSERT YOUR CERT HERE
-----END CERTIFICATE-----”,
“key”:
“-----BEGIN EC PRIVATE KEY-----
INSERT YOUR KEY HERE
-----END EC PRIVATE KEY-----”
}
},
“realms”: {
“*”: {
“servers”: [ “216.239.34.91” ],
“tls”: “default”
}
}
},
“hostapd”: "
hs20=1
disable_dgaf=1
hs20_oper_friendly_name=eng:Orion
interworking=1
access_network_type=2
internet=1
roaming_consortium=F4F5E8F5F4
anqp_3gpp_cell_net=310,410;310,280;310,150;313,100
radius_acct_interim_interval=300
venue_name=eng:My Venue
domain_name=orionwifi.com
"
}
This thread has been automatically closed due to inactivity. If you believe you have the same issue, please create a new post describing your issue. Feel free to link to this post for context if desired.