Skip to content

bestrocker221/freeRADIUS-alpine

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
.github/workflows
.github/workflows
 
 
mysql
mysql
 
 
radius
radius
 
 
.env
.env
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 

Repository files navigation

freeRADIUS-alpine

Build project

FreeRADIUS 3 built on alpine with MySQL 8

In this example i called mysql.acme.com the MySQL Container and certificates are signed with the CA.

Before deployment (IMPORTANT)

  1. As of now, the .env file contains the passwords and configuration for freeRADIUS and SQL, remember to generate new ones.
  2. Generate/import your own CA certificate and client certificates.

Note, this is a template, do not use as-is but generate your own crypto material.

Security

  • FreeRADIUS will connect to MySQL through encrypted TLS connections.
  • MySQL is configured to accept only TLS 1.2 encrypted connections. A radius user is allowed to view the radius database
  • FreeRADIUS will allow EAP-TTLS for outside clients

Everything travel encrypted.

Work in progress

TODO

  • add config option to setup MSCHAP towards AD
  • add certificates generation script + tutorial

Error with buildx - Docker-compose

export DOCKER_BUILDKIT=0 export PROGRESS_NO_TRUNC=1 docker-compose --verbose --progress=plain build

Test locally

eapol_test -a127.0.0.1 -p1812 -stest -ceapol-tls.conf -r0 -stesting123

should return SUCCESS.

About

FreeRADIUS 3 built on alpine docker container

carloalbertoscola.it/2019/network/security/linux/freeradius-3-setup-mysql-eap-ttls/

Topics

mysql tls alpine freeradius eap-ttls

Resources

Readme
Activity

Stars

5 stars

Watchers

1 watching

Forks

7 forks
Report repository

Releases

6 tags

Packages

No packages published

Contributors 2

  •  
  •  

Languages