RADIUS Configuration

Owned by Florian Lahr (Unlicensed)
Last updated: Sept 26, 2018 by Daniel Maletz (Unlicensed)
1 min read

PowerFolder Server allows to use RADIUS as an authentication provider for PowerFolder Server. It allows PowerFolder Server to seamlessly integrate with federated RADIUS services, which for example provide secure, world-wide roaming access services developed for international research and education networks.

Overview:

Explanation of RADIUS Authentication

The authentication process is similar to the process when authenticating users against an LDAP Directory Server.

(info) Some PowerFolder Server relevant user data like permissions, computers and storage quota will still be stored in the PowerFolder Server database.


Connecting to a RADIUS Server

The connection can be configured using the web interface. Choose Preferences > Authentication > RADIUS.

(warning) Please note that you need to be logged in with the admin account to change RADIUS settings.

An explanation of all settings can be found here.

Using multiple authentication sources (Chained authentication)

It is also possible to configure PowerFolder Server to authenticate users against multiple different authentication services (e.g. LDAP and RADIUS). A user will be successfully authenticated at PowerFolder Server if one of the given services returns a successful authentication attempt.

To configure the authentication order choose Preferences > Authentication > Authentication order from the web interface and enter the following values:

ldap,radius,database

The above example will have PowerFolder Server try to authenticate user logins against LDAP first, after that it will check RADIUS and the internal/external database as the last option.

For possible values for the security.auth.order field check here.