Implement RadSec Support

  • 1
  • Idea
  • Updated 5 years ago
At present, only traditional RADIUS is supported by HiveOS, which is unencrypted.

RadSec improves on things by encrypting the RADIUS traffic using TLS.

It would be great if Aerohive would consider implementing this.
Photo of Nick Lowe

Nick Lowe, Official Rep

  • 2491 Posts
  • 451 Reply Likes

Posted 5 years ago

  • 1
Photo of Matthew Gast

Matthew Gast

  • 284 Posts
  • 63 Reply Likes
Hi Nick,

Did you know that we already support RadSec for connections to ID Manager? That was pretty easy to do because we can issue certificates to both ends of the connection. For a generic RadSec interface, we'd have to pull in external certificates. What is the CA that would issue your RadSec certs?
Photo of Nick Lowe

Nick Lowe, Official Rep

  • 2491 Posts
  • 451 Reply Likes
It would be an internal CA and/or eduroam CA in conjunction with FreeRADIUS 3.