Aruba & ProVision-based
cancel
Showing results for 
Search instead for 
Did you mean: 

I want to secure the radius auth request by Radius User Password or Chap Password of my own

abhipro
Occasional Visitor

I want to secure the radius auth request by Radius User Password or Chap Password of my own

I want to configure the HP Procurve switch with a radius user password defined by me.

Currently the default user password is alwas the mac address of the client connected to port. This is same as the User Name field in radius message. So there is no security here. 

Same goes for Chap Password as well. Its always calculated from the mac address of client connected to port or the User Name of radius packet !

Is there a way to do it !

 

2 REPLIES
TerjeAFK
Respected Contributor

Re: I want to secure the radius auth request by Radius User Password or Chap Password of my own

Have you considered TACACS+ if you are worried about Radius security?

abhipro
Occasional Visitor

Re: I want to secure the radius auth request by Radius User Password or Chap Password of my own

Thanks for replying and suggesting TACACS+

However I was looking for a way to avoid cases in radius communication where the shared secret key of the server does not match the secret configured in Procurve. In this case the server does not know that the reply it send got rejected. And we have to rely on some monitoring to ensure the configuration is proper