3.13.1. Secret Previous topic Parent topic Child topic Next topic

This defines the shared secret that will be used to decrypt RADIUS messages that are received from this client. You must define a shared secret for each Client, and it must match the secret configured into the client RADIUS software. There is no default. The secret can be any number of ASCII characters. Any ASCII character except newline is permitted, but it might be easier if you restrict yourself to the printable characters. For a reasonable level of security, the Secret should be at least 16 characters, and a mixture of upper and lower case, digits and punctuation. You should not use just a single recognisable word.
# This better agree with the client at
# oscar.open.com.au or we won't understand them!
<Client oscar.open.com.au>
      Secret 666obaFGkmRNs666
</Client>