Solved

How can I make IIS use radius?

Posted on 2006-06-15
3
2,138 Views
Last Modified: 2008-02-01
I have an IIS box running in our DMZ and we want to try to create a single sign on experience for our users.  I want to use radius and I have it set up and the firewall ports are open, but IIS doesn't seem to be using radius.  All non-local users (server is not part of AD of course) are not authenticated.  I have searched here, other techie sites and google, but very little info on this.  There is a company called www.tcpdata.com that has an isapi filter that does this, but it seems that this should be available using MS SW.  
0
Comment
Question by:arlingy
  • 2
3 Comments
 
LVL 16

Expert Comment

by:OliWarner
ID: 16916813
The short answer: No. That's the only product available now that will do the job.

IIS doesnt have any scope for covering radius auth. Needless to say, you create your own implementation of a RADIUS client in ASP.net but this would require you know a lot about the inner workings of the RADIUS protocol and also lots of socket experience.

It looks like using the component from tcpdata might be the easiest/fastest(and therefore cheapest) method of doing it.
0
 

Author Comment

by:arlingy
ID: 16917068
Of course, you have no connection with them whatsoever, right? ;-)

I've ordered their demo and will probably end up using it.  I'm surprised that their aren't more resources out there for this issue.  I know federation services offers this, and ADAM might work for our needs.  This has to be a common problem, so what do other sites use?  
0
 
LVL 16

Accepted Solution

by:
OliWarner earned 500 total points
ID: 16917222
>> Of course, you have no connection with them whatsoever, right? ;-)
None at all.

I (thankfully) have never had to develop for RADIUS authentication... I stick to AD... But I've heard from several people who either write their own workarounds to communicate directly with the radius server, communicate with other software that can talk to the auth server or just use that component.

In the interests of simplicity and time, I'd go with the spending-money route.. If you've got the time to investigate, you could see about writing your own client.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Author Note: Since this E-E article was originally written, years ago, formal testing has come into common use in the world of PHP.  PHPUnit (http://en.wikipedia.org/wiki/PHPUnit) and similar technologies have enjoyed wide adoption, making it possib…
Learn by example how to specify CSS selectors for Selenium WebDriver test automation software.
Viewers will get an overview of the benefits and risks of using Bitcoin to accept payments. What Bitcoin is: Legality: Risks: Benefits: Which businesses are best suited?: Other things you should know: How to get started:
This tutorial walks through the best practices in adding a local business to Google Maps including how to properly search for duplicates, marker placement, and inputing business details. Login to your Google Account, then search for "Google Mapmaker…

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now