README.md

RadSec(Radius over TLS) Plugin for Keycloak

• secured communication between RADIUS/TCP peers on the transport layer

Radsec Example

1. generate keys and certificates (I don't have experience with openssl, so I am using https://certificatetools.com/ )
2. Page 1
3. Page 2
4. download private key to ${KEYCLOAK_PATH}/config/private.key
5. download PEM Certificate to ${KEYCLOAK_PATH}/config/public.crt
6. enable radSec( Mikrotik sharedSecret have to be "radsec" ) :

{
  {
   "sharedSecret":"radsec",
   "authPort":1812,
   "accountPort":1813,
   "useUdpRadius":true,
   "radsec":{
      "privateKey":"config/private.key",
      "certificate":"config/public.crt",
      "useRadSec":true
   }
}

7. download PKCS#12 Certificate
8. upload PKCS#12 Certificate to Mikrotik
9. import Certificate
10. enable radsec