Reference Manual

Redpine Signals, Inc. Proprietary and Confidential Page 63

RS9116 n-Link Linux and Android

Technical Reference Manual

Version 2.0

private_key_file = /etc/certs/wifiuser.pem

#certificate_file = ${certdir}/server.pem

certificate_file = /etc/certs/wifiuser.pem

#ca_file = ${cadir}/ca.pem

ca_file = /etc/certs/wifiuser.pem

#dh_file = ${certdir}/dh

dh_file = /etc/certs/dh

}

To start the Radius server, run the flowing command in the terminal:

$ radiusd -X

For openssl versions of range 1.0.2 release - 1.0.2h release (or) in range 1.0.1 - 1.0.1t release (or) in

range 1.1.0 - 1.1.0a release

edit radiusd.conf file

$vim /usr/local/etc/raddb/radiusd.conf

and change 'allow_vulnerable_openssl' to yes or CVE-2016-6304

allow_vulnerable_openssl =yes

(or)

allow_vulnerable_openssl ='CVE-2016-6304'

(here CVE-2016-6304 is openssl vulnerability ID which radius server will allow)

7.2 Configuration of AP and RADIUS server to use EAP methods

Hostapd is used as the RADIUS Server. The AP and the server are co-located (in the same system).

The following packages which have to be installed are as follows:

• libnl-devel

• libsqlite3x-devel

• openssl-devel