This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
HansKazan
Contributor
‎2024-08-08 06:28 AM

RADIUS Secret for Migration

Hello CheckMates!

I was wondering about something for an upcoming replacement of physical CP appliances regarding RADIUS secrets.

In the regular GAIA configuration, the radius secret is shown as "*****" with from my understanding the hashed password being found in the /config/db/initial file. When I grep this output to radius I am left with a line such as below.
aaa:auth_profile:base_radius_authprofile:radius_srv:xx:secret \ aAAaAaAaAaAaAaAag=

Would it be possible to migrate the RADIUS secret by configuring radius with the wrong secret, and then manually change the entry in the /config/db/initial file? Or would there be an alternative way to do such a thing when the shared secret password is currently unknown?

Thank you for your time and possible response!

0 Kudos
2 Replies
_Val_
Admin
Admin
‎2024-08-10 06:47 AM

Even if the secret was known, I don't think just copy/pasting files from the old machine to the new one would help. I would suggest setting radius from scratch on the new machines. 

0 Kudos
Lesley
Mentor Mentor
Mentor
‎2024-08-10 07:18 AM

Sometimes it is possible to get the secret from the Radius server itself. 

-------
If you like this post please give a thumbs up(kudo)! 🙂
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top