Automatic Key Synchronization

Leave a Comment / Thales / By

Overview

Starting from version X.X.X, the FreeRADIUS Agent supports automatic key synchronization on the client side. This feature ensures that when keys are rotated or new keys are generated, the updated keys are automatically synced to the client without requiring manual intervention.

How It Works

  • When an administrator configures key rotation in the FreeRADIUS Agent configuration, the system will monitor for key updates.
  • Upon detecting a key rotation event or the generation of a new key, the agent will securely download and update the keys at the client side.
  • This automated process reduces operational overhead and ensures the client always uses the latest valid keys.

Configuration

To enable automatic key synchronization:

  1. Configure Key Rotation
    • In the FreeRADIUS Agent configuration file, specify the key rotation settings as required.
    • Example configuration:
      • [key_management]
auto_sync = true
rotation_interval = <interval_value>
    • Replace <interval_value> with the desired rotation interval (e.g., 24h for every 24 hours).
  2. Restart the Agent
    • After updating the configuration, restart the FreeRADIUS Agent to apply the changes.

Usage Notes

  • Automatic key synchronization is supported only when auto_sync is set to true in the configuration.
  • Keys will be updated at the client side immediately after a rotation or new key event.
  • Manual key download remains available as a fallback.

Example Scenario

If the administrator configures the system to rotate keys every 24 hours, the FreeRADIUS Agent will:

  1. Rotate the key at the specified interval.
  2. Detect the key rotation event.
  3. Automatically sync the new key to the client device.

For more information on configuring key rotation, refer to the Configuration Guide.

Leave a Comment

Your email address will not be published. Required fields are marked *

Disabled !