1 #Master config file, must be in /etc/radsecproxy or proxy's current directory
2 # All possible config options are listed below
4 # You must specify at least one of TLSCACertificateFile or TLSCACertificatePath
5 # for TLS to work. We always verify peer certificate (both client and server)
6 #TLSCACertificateFile /etc/cacerts/CA.pem
7 TLSCACertificatePath /etc/cacerts
9 # You must specify the below for TLS, we will always present our certificate
10 TLSCertificateFile /etc/hostcertkey/host.example.com.pem
11 TLSCertificateKeyFile /etc/hostcertkey/host.example.com.key.pem
12 # Optionally specify password if key is encrypted (not very secure)
13 TLSCertificateKeyPassword follow the white rabbit
15 # You can optionally specify a non-standard UDP port to listen