From SecurePass

Jump to: navigation, search

SecurePass RADIUS support

RADIUS Integration

Remote Authentication Dial In User Service (RADIUS or, nowadays, Diameter) is a networking protocol that provides centralised authentication, authorisation, and Accounting (AAA) management for computers that connect and use a network service.

The RADIUS protocol is extremely popular and is embedded as a client in any network equipment, operating systems[1] and some services such as e-mail, proxy, etc.

The number of devices and systems/applications is huge, we can categorise them as follows:

  • Wireless Access Points
  • Wireless Hot-Spots/Captive Portals
  • Wired network access (IEEE 802.1x)
  • VPN Systems (Cisco, CheckPoint, OpenVPN, Astaro, etc...)
  • SSL VPN Systems (ex: Array Networks, Adito, etc...)
  • Secure File Transfer (SFTP/FTP)
  • DMZ Hosts (Windows, Linux and other Unix)
  • Windows Terminal Services (RDP, not member of a domain)
  • Authorisation systems (such as bank service or government deployments)

Configure RADIUS in your system

In order to make Secure Pass work with your equipment, you must specify our hostname in your equipment:

Hostname Datacentre Zone
Primary Radius Ticino, Switzerland
Secondary Radius Milan, Italy

The authentication type is PAP.

Please note that -at the moment- we do not support CHAP, MSCHAP and MSCHAPv2. Also note that it is important to use names instead of IP addresses as addresses might change. We will notify the registered administrator of any changes to the IP addresses.

Experimental global load-balancing service: it is now possible to leverage SecurePass' global load balancing architecture. Easily point your application to and our geographical service will automatically select your closest available datacenter. Although stable, this feature is considered experimental.

Programming Libraries

The following is a collection of links to libraries implementing the RADIUS protocol that can be used in applications:

  1. Through the use of additional software