Skip to content

bestrocker221/freeRADIUS-alpine

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits

.github/workflows

.github/workflows

 
 

mysql

mysql

 
 

radius

radius

 
 

.env

.env

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

docker-compose.yml

docker-compose.yml

 
 

Repository files navigation

freeRADIUS-alpine

Build project

FreeRADIUS 3 built on alpine with MySQL 8

In this example i called mysql.acme.com the MySQL Container and certificates are signed with the CA.

Before deployment (IMPORTANT)

  1. As of now, the .env file contains the passwords and configuration for freeRADIUS and SQL, remember to generate new ones.
  2. Generate/import your own CA certificate and client certificates.

Note, this is a template, do not use as-is but generate your own crypto material.

Security

  • FreeRADIUS will connect to MySQL through encrypted TLS connections.
  • MySQL is configured to accept only TLS 1.2 encrypted connections. A radius user is allowed to view the radius database
  • FreeRADIUS will allow EAP-TTLS for outside clients

Everything travel encrypted.

Work in progress

TODO

  • add config option to setup MSCHAP towards AD
  • add certificates generation script + tutorial

Error with buildx - Docker-compose

export DOCKER_BUILDKIT=0 export PROGRESS_NO_TRUNC=1 docker-compose --verbose --progress=plain build

Test locally

eapol_test -a127.0.0.1 -p1812 -stest -ceapol-tls.conf -r0 -stesting123

should return SUCCESS.

About

FreeRADIUS 3 built on alpine docker container

carloalbertoscola.it/2019/network/security/linux/freeradius-3-setup-mysql-eap-ttls/

Topics

mysql tls alpine freeradius eap-ttls

Resources

Readme
Activity

Stars

6 stars

Watchers

1 watching

Forks

6 forks
Report repository

Releases

6 tags

Packages

No packages published

Contributors 2

  •  
  •  

Languages