Retrieve Identikey RADIUS shared secrets
Posted in Operating Systems, Linux, Tips on Thursday, May 28, 2015 by cam
Recently I had the fun task of migrating our Vasco Identikey RADIUS to a Yubikey based RADIUS server. The only problem was with over 80 clients and 80 different shared secrets I didn’t want to log into 80 servers and retrieve the shared secret from the configuration files.
So to retrieve the shared secrets from the database perform the following on you identikey (linux) installation:
log onto identikey and ’su - root’
vds_chroot /opt/vasco/identikey /bin/bash su - postgres /usr/local/pgsql/bin/psql --username=digipass -d postgres \pset pager off select vdslocation, vdspolicyid, vdsprotocolid, vdstcpport, vdssharedsecret from vdscomponent;
The secrets are obfuscated and I haven’t worked out the rest….yet….