Lantronix PremierWave XC PremierWave XC - User Guide - Page 97

Steel Belted RADIUS, Free RADIUS, With SBR

Get Lantronix PremierWave XC PDF manuals and user guides View all Lantronix PremierWave XC manuals
Add to My Manuals
Save this manual to your list of manuals

Page 97 highlights

14: Security in Detail Steel Belted RADIUS Steel Belted RADIUS is a commercial RADIUS server from Juniper Networks that provides a GUI administration interface. It also provides a certificate request and self-signed certificate generator. The self-signed certificate has extension .sbrpvk and is in the PKCS12 format. OpenSSL can convert this into a PEM format certificate and key: openssl pkcs12 -in sbr_certkey.sbrpvk -nodes -out sbr_certkey.pem The sbr_certkey.pem file contains both certificate and key. If loading the SBR certificate into PremierWave XC as an authority, you will need to edit it: 1. Open the file in any plain text editor. 2. Delete all info before "----- BEGIN CERTIFICATE-----" and after "----- END CERTIFICATE-----", and then save as sbr_cert.pem. SBR accepts trusted-root certificates in the DER format. Again, OpenSSL can convert any format into DER: openssl x509 -inform pem -in mp_cert.pem -outform der -out mp_cert.der Note: With SBR, when the identity information includes special characters such as dashes and periods, SBR changes the format it uses to store these strings and becomes incompatible with the current PremierWave XC release. Support may be added for this and other formats in future releases. Free RADIUS Free RADIUS is another versatile Linux open-source RADIUS server. PremierWave XC User Guide 97

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
14: Security in Detail
PremierWave XC User Guide
97
Steel Belted RADIUS
Steel Belted RADIUS is a commercial RADIUS server from Juniper Networks that provides a GUI
administration interface. It also provides a certificate request and self-signed certificate generator.
The self-signed certificate has extension .sbrpvk and is in the PKCS12 format. OpenSSL can
convert this into a PEM format certificate and key:
openssl pkcs12 -in sbr_certkey.sbrpvk -nodes -out sbr_certkey.pem
The
sbr_certkey.pem
file contains both certificate and key. If loading the SBR certificate into
PremierWave XC as an authority, you will need to edit it:
1.
Open the file in any plain text editor.
2.
Delete all info before
"----- BEGIN CERTIFICATE-----" and after "----- END
CERTIFICATE-----"
, and then save as
sbr_cert.pem.
SBR accepts trusted-root certificates in the DER format. Again, OpenSSL can convert any format
into DER:
openssl x509 -inform pem -in mp_cert.pem -outform der -out mp_cert.der
Note:
With SBR, when the identity information includes special characters such as
dashes and periods, SBR changes the format it uses to store these strings and becomes
incompatible with the current PremierWave XC release. Support may be added for this
and other formats in future releases.
Free RADIUS
Free RADIUS is another versatile Linux open-source RADIUS server.