Mikrotik Setup for RadSec
Setting up a Mikrotik equipment to work with Foxpass RadSec
Foxpass RadSec allows a RADIUS connection via TLS for an additional layer of security. This setup guide will help you configure Mikrotik equipment with Foxpass RadSec.
Step 1 - Download Cert + Key from Foxpass console
- In the Foxpass Console, go to the RadSec page.
- Create a new Client certificate and key by clicking the Create Client Certificate button. Select any RADIUS attributes to associate with the newly generated Client certificate.
- Click on the Download button and select Separate .crt and .key to download the Certificate and the Key (allow multiple file download when asked in the browser)
See the screenshots below for more details.
Create RadSec Cert from Foxpass Console
Download RadSec Cert + Key
Step 2 - Configure your Mikrotik equipment
See the following information and screenshots below for configuration details.
- Address: The IP addresses can be obtained from Foxpass console, in RadSec Page
- Protocol: radsec
- Secret: radsec
- Authentication Port: 2083
- Accounting Port: 2083
- Timeout: 3000 ms
- Certificate: Upload cert + key downloaded from step1
Configuring Mikrotik equipment with RadSec
Upload Certificate and Key
Note: We do not currently support MFA and logging for RadSec and these features will be available in a future release.
Updated about 1 month ago