Get Started: RADIUS

Help Center Home > Authentication > Get Started: RADIUS

Get Started: RADIUS

Overview

探花大神 RADIUS lets users securely authenticate their devices to WiFi, VPN, or other supported networks using 探花大神. There are 3 available RADIUS configurations at 探花大神 that vary in complexity based on your preferred authentication method. With password-based authentication, users authenticate with the same credentials they use to access their other 探花大神-protected resources (for example, the 探花大神 User Portal and SSO applications).

Note:

Password-based authentication is the default authentication method for 探花大神 RADIUS.

探花大神 supports the following RADIUS configurations, differentiated by the method with which users authenticate on their devices:

Password-based authentication (WiFi or VPN)
- Users authenticate to networks with their 探花大神 username or email address and password.
- Reduces the need for additional configuration on end-user devices.
Passwordless-based authentication (WiFi)
- AKA certificate-based authentication (CBA); this authentication method for RADIUS requires additional configuration steps to connect end-user devices to networks.
- This method requires devices to connect using EAP-TLS.
Delegated authentication with Entra ID (WiFi)
- Use 探花大神 RADIUS solely as the authentication server and maintain Entra ID as the identity provider (IdP).
- Delegated auth is still password-based, but user credentials are managed in Entra ID.
- This method requires devices to connect using EAP-TTLS/PAP.

Note:

For more information about the RADIUS protocol and 探花大神鈥檚 implementation, see Overview of RADIUS-as-a-Service.
For in-depth technical details such as supported protocols and MFA support, see RADIUS Technical Considerations and Protocol Support.

Configuring 探花大神 RADIUS

Configuring 探花大神 RADIUS involves multiple steps including the 探花大神 configuration, the networking equipment configuration, and potentially the end-user device configuration depending on your chosen solution within your environment. The following serves as an overview of the process:

Select the RADIUS configuration appropriate for your environment:
1. Password
2. Passwordless / CBA
3. Delegated Auth with Entra ID
Based on your preferred authentication method, configure your 探花大神 RADIUS server:
Next, configure your network hardware to use the 探花大神 RADIUS server:
1. For generic configuration applicable to multiple vendors:
  1. Configure a WAP, VPN, or Router for RADIUS
2. Vendor specific configurations:
Lastly, configure your endpoints to connect using JC RADIUS:

Note:

WiFi: if you selected Password-based authentication, no further configuration should be necessary. Users will connect from their end-user devices with 探花大神 credentials and will not require any additional configuration on their end-user devices. See Configure your WiFi Clients to use RADIUS for more information.
VPN: if you selected Password-based authentication, any additional configuration between your VPN service and your end-user device is required based on the specifics of your vendor.

If you selected Passwordless-based authentication / CBA, see the following information:
1. Configure EAP-TLS for RADIUS using Certificate Example Scripts
2. Certificate Based Authentication to RADIUS
If you selected Delegated Authentication with Entra ID, configure your endpoints to use EAP-TTLS/PAP:
1. Configure EAP-TTLS/PAP on Mac & iOS for RADIUS
2. Configure EAP-TTLS/PAP on Windows for RADIUS

Back to Top

Still Have Questions?

If you cannot find an answer to your question in our FAQ, you can always contact us.

Submit a Case

探花大神