?
Solved

How can I make IIS use radius?

Posted on 2006-06-15
3
Medium Priority
?
2,377 Views
Last Modified: 2008-02-01
I have an IIS box running in our DMZ and we want to try to create a single sign on experience for our users.  I want to use radius and I have it set up and the firewall ports are open, but IIS doesn't seem to be using radius.  All non-local users (server is not part of AD of course) are not authenticated.  I have searched here, other techie sites and google, but very little info on this.  There is a company called www.tcpdata.com that has an isapi filter that does this, but it seems that this should be available using MS SW.  
0
Comment
Question by:arlingy
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 16

Expert Comment

by:OliWarner
ID: 16916813
The short answer: No. That's the only product available now that will do the job.

IIS doesnt have any scope for covering radius auth. Needless to say, you create your own implementation of a RADIUS client in ASP.net but this would require you know a lot about the inner workings of the RADIUS protocol and also lots of socket experience.

It looks like using the component from tcpdata might be the easiest/fastest(and therefore cheapest) method of doing it.
0
 

Author Comment

by:arlingy
ID: 16917068
Of course, you have no connection with them whatsoever, right? ;-)

I've ordered their demo and will probably end up using it.  I'm surprised that their aren't more resources out there for this issue.  I know federation services offers this, and ADAM might work for our needs.  This has to be a common problem, so what do other sites use?  
0
 
LVL 16

Accepted Solution

by:
OliWarner earned 1500 total points
ID: 16917222
>> Of course, you have no connection with them whatsoever, right? ;-)
None at all.

I (thankfully) have never had to develop for RADIUS authentication... I stick to AD... But I've heard from several people who either write their own workarounds to communicate directly with the radius server, communicate with other software that can talk to the auth server or just use that component.

In the interests of simplicity and time, I'd go with the spending-money route.. If you've got the time to investigate, you could see about writing your own client.
0

Featured Post

Moving data to the cloud? Find out if you’re ready

Before moving to the cloud, it is important to carefully define your db needs, plan for the migration & understand prod. environment. This wp explains how to define what you need from a cloud provider, plan for the migration & what putting a cloud solution into practice entails.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When the s#!t hits the fan, you don’t have time to look up who’s on call, draft emails, call collaborators, or send text messages. An instant chat window is definitely the way to go, especially one like HipChat. HipChat is a true business app. An…
When it comes to security, close monitoring is a must. According to WhiteHat Security annual report, a substantial number of all web applications are vulnerable always. Monitis offers a new product - fully-featured Website security monitoring and pr…
The viewer will learn how to look for a specific file type in a local or remote server directory using PHP.
The viewer will get a basic understanding of what section 508 compliance can entail, learn about skip navigation links, alt text, transcripts, and font size controls.
Suggested Courses

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question