Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Freeradius TLS 1.0 and 1.1 not activated anymore

    Scheduled Pinned Locked Moved
    pfSense Packages
    1
    1
    164
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      Trey
      last edited by

      Hello,

      since some time Freeradius changed the min tls 1.0 configuration. When you now set the min tls version to 1.0 in the pfsense gui, freeradius will log the following error on startup:

      tls: In order to use TLS 1.0 and/or TLS 1.1, you likely need to set: cipher_list = "DEFAULT@SECLEVEL=0"

      Can somebody change the gui script to not only set min_tls_version but also cipher_list when set to tls version 1.0 and 1.1 in the gui?

      kind regards

      1 Reply Last reply Reply Quote 0
      • First post
        Last post