Using radius authentication to authenticate users through a Captive Portal

  • Abhay Yadav
    Participant
    # 4 years, 1 month ago

    Is there any way to authenticate users through Radius. I wanted to check their credentials with our inhouse database, right as they connect to the WiFi.

    anukasha
    Member
    # 3 years, 9 months ago

    Hi There,
    miniOrange supports Radius authentication to verify the users when they connect to the captive wifi/Network. The users will be prompted with the login page of the Captive portal when they connect to the wifi. They need to enter their username and password of the Active Directory.
    Captive portal will send a request to the radius server and based on the response it will allow and disallow their connection request.
    You can also enable the two-factor authentication with OTP Over SMS, OTP Over Email, and many more authentication methods on top of radius authentication.

    You can send us a query at info@xecurify.com / 2fasupport@xecurify.com we are happy to help you.

    anukasha
    Member
    # 3 years, 9 months ago

    Hi There,
    miniOrange supports Radius authentication to verify the users when they connect to the captive wifi/Network. The users will be prompted with the login page of the Captive portal when they connect to the wifi. They need to enter their username and password of the Active Directory.
    Captive portal will send a request to the radius server and based on the response it will allow and disallow their connection request.
    You can also enable the two-factor authentication with OTP Over SMS, OTP Over Email, and many more authentication methods on top of radius authentication.

    You can send us a query at info@xecurify.com / 2fasupport@xecurify.com we are happy to help you.

    ar6464558
    Participant
    # 9 months, 3 weeks ago

    Yes, you can use the Remote Authentication Dial-In User Service (RADIUS) protocol to authenticate users as they connect to WiFi. RADIUS is a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) management for users who connect and use a network service.

    To authenticate users through RADIUS and check their credentials against your in-house database, you’ll typically need the following components:

    RADIUS Server: Set up a RADIUS server that will handle authentication requests. Popular RADIUS server software includes FreeRADIUS, Microsoft NPS (Network Policy Server), and Cisco Identity Services Engine (ISE).

    WiFi Access Points/Controllers: Configure your WiFi infrastructure to use RADIUS for user authentication. This involves setting up your access points or controllers to communicate with the RADIUS server.

    User Database Integration: Connect your RADIUS server to your in-house user database. This might involve configuring the RADIUS server to query your database or using an external tool to synchronize user accounts.

    Here is a high-level overview of the process:

    When a user attempts to connect to the WiFi network, the WiFi access point forwards the authentication request to the RADIUS server.

    The RADIUS server then checks the user credentials against your in-house database.

    If the credentials are valid, the RADIUS server sends an acceptance message to the WiFi access point, allowing the user to connect. Otherwise, it sends a rejection message.

    Optionally, you can configure additional authorization policies based on user attributes.

    The specific steps and configurations will depend on the RADIUS server software and WiFi equipment you are using. It’s important to consult the documentation for your RADIUS server and WiFi infrastructure to ensure proper setup.

    Keep in mind that securing the communication between the RADIUS server and the WiFi equipment is crucial. Consider using protocols like EAP (Extensible Authentication Protocol) for secure authentication.

    Additionally, the RADIUS server needs to be properly configured to handle the authentication and authorization processes according to your specific requirements.

Viewing 4 posts - 1 through 4 (of 4 total)

You must be logged in to reply to this topic.