RadSec configuration
To configure RadSec protocol, use the following commands:
Configure TLS using the command
radius服务器主机tls.Associate the leaf certificate with RadSec feature (
radsec-client)使用命令crypto pki application.To use switch inbuilt IDEVID certificate, add
device-identitywith the commandcrypto pki application.By default, switch uses the local certificate for Radsec application. For more information on installing certificates, seePKI一章。
NOTE:RadSec mandates validating server certificates SAN/CN while establishing connections.