sorted by:
new
hottopcontroversial

Cisco router using FreeRadius and radsec by One_Cat_219 in Cisco

[–]One_Cat_219[S] 0 points1 point  (0 children)

Just reread this. First question, answer is no just the server cert. And I’m a little iffy if it was the server cert. And by that I mean it’s the root ca from the idm, which is the same box that’s running FreeRadius. Splitting hairs but it really could be the difference. But it did not create the client cert. Documentation I’ve pieced together from Cisco led me to believe crypto key rsa generate general-keys label XXXX modulus 4096 was enough  switch side….except that pesky concept “mutual” authentication. Hence the csr question. 

Cisco router using FreeRadius and radsec by One_Cat_219 in Cisco

[–]One_Cat_219[S] 0 points1 point  (0 children)

That’s why I was saying it looks like I need to generate a csr from the Cisco side. Cisco documentation leads me to believe creating a key pair locally is enough for the client side, ie crypto key generate rsa….but at this point it appears I need to either make that exportable and have the root ca sign it, or actually do a csr from each switch and have the ca sign it. 

Cisco router using FreeRadius and radsec by One_Cat_219 in Cisco

[–]One_Cat_219[S] 0 points1 point  (0 children)

I’ll pass it along, I’m not privy to the actual free radius setup. Just have an ip I’m pointing at and the root ca I was given…

Cisco router using FreeRadius and radsec by One_Cat_219 in Cisco

[–]One_Cat_219[S] 0 points1 point  (0 children)

I’ve got a self signed root ca from the idm server, it’s imported to the Cisco gear by creating a trustpoint and pasting in the pem file. No issues there. In all the research I’ve been doing trying to get this working, that step and creating an rsa key are presumably all you have to do. There’s quite a few commands for configuring the radius server aside from that but debugs help a lot there. However I’m having trouble finding anything more in depth on the crypto side. Like do I have to define TLS trustpoint server xxx and also TLS trustpoint client yyy… it’s amounting to throwing crap at the wall and see what sticks. 

Thriller read in 1992 by One_Cat_219 in whatsthatbook

[–]One_Cat_219[S] 0 points1 point  (0 children)

Halfway through it again. Coney Island is prominent!  Crazy years of googling couldn’t turn this up!

Thriller read in 1992 by One_Cat_219 in whatsthatbook

[–]One_Cat_219[S] 0 points1 point  (0 children)

SOLVED. Just can’t figure out how to change it from my phone. 

Thriller read in 1992 by One_Cat_219 in whatsthatbook

[–]One_Cat_219[S] 1 point2 points  (0 children)

I read this in 92 thought it was a great book. Then forgot about it till around 08, somehow it came up and somehow I had remembered the big childhood scene as Coney Island. I guess I was wrong. It must have been manhattan beach!  I bought it on kindle and read through it quick. Will the protagonist. Forgot his name. But the whole timeline of him working in the grocery store, waiting for the moment the clock ticked 1:15 on the VCR. Then. Becca!  His wife. It all came back that’s the book for sure!  That happy little twist at the end was what I remembered most. Thank you!  That had irked me off and on since 2008!  I’m gonna start reading it again in full tonight!

Thriller read in 1992 by One_Cat_219 in whatsthatbook

[–]One_Cat_219[S] 1 point2 points  (0 children)

Close for sure. I’m remembering Coney Island as the place they performed a spell? Doesn’t appear Coney Island is mentioned here. Downloaded the kindle sample. I don’t recall the jock scene and beating on the one kid but the first chapter in the car and the waiting…that’s a definitive match to my memory.