✖

Related Products
ADManager Plus

Active Directory Management & Reporting
Download | Demo
ADAudit Plus

Real-time Active Directory Auditing and UBA
Download | Demo
EventLog Analyzer

Real-time Log Analysis & Reporting
Download | Demo
Exchange Reporter Plus

Exchange Server Auditing & Reporting
Download | Demo
AD360

Integrated Identity & Access Management
Download | Demo
Log360

Comprehensive SIEM and UEBA
Download | Demo

RADIUS Authentication

Note: RADIUS Authentication is an Advanced Authenticator available as part of the Professional edition of ADSelfService Plus.

When RADIUS Authentication is enabled, end users will be considered enrolled and allowed to authenticate themselves by producing a valid RADIUS password and completing the RADIUS challenge, if configured.

What is the RADIUS challenge?

The RADIUS challenge comes into the picture when secondary authentication is configured in the RADIUS server in addition to the existing password-based authentication. Once it's configured, users need to provide the RADIUS password and a one-time passcode or secret key (according to admin configuration) for successful identity verification.

Prerequisite Steps:

Configure a RADIUS client in the RADIUS server for ADSelfService Plus using configuration steps specific to the RADIUS server.

For example, to configure a RADIUS client in freeRADIUS:

Log in to the RADIUS server.
Log in to the RADIUS server.Navigate to the clients.conf file (default location:
/etc/raddb/clients.conf).
Add the following snippet in the clients.conf file:

client <xyz> 
 {
 ipaddr = <xxx.xxx.xxx.xxx>
 secret = <abc>
 nastype = other
 }

where,
<xyz> refers to the ADSelfService Plus server name.
<xxx.xxx.xxx.xxx> refers to the ADSelfService Plus server's IP address. and, <abc> refers to the secret key value created by the admin.

Restart the RADIUS server.

Configure ADSelfService Plus for RADIUS

Navigate to Configuration → Self Service → Multi-Factor Authentication → Authenticators Setup.
From the Choose the Policy drop-down, select a policy.

Note: ADSelfService Plus allows you to create OU and group-based policies. To create a policy, go to Configuration → Self-Service → Policy Configuration → Add New Policy. Click Select OUs/Groups, and make the selection based on your requirements. You need to select at least one self-service feature. Finally, click Save Policy.
Click RADIUS Authentication section.
Enter the Server Name, Server Port number, Server Protocol, Secret Key, Username Pattern, and the Request Time Out seconds.

Important: The Username Pattern is case-sensitive.

Click Save.

Radius

Previous Topic Next Topic

Thanks!

Your request has been submitted to the ADSelfService Plus technical support team. Our technical support people will assist you at the earliest.

Need technical assistance?

Enter your email ID
Talk to experts

Don't see what you're looking for?

Visit our community

Post your questions in the forum.
Request additional resources

Send us your requirements.
Need implementation assistance?

Try onboarding