Solved

Radius server and Single-Sign On

Posted on 2006-11-08
6
1,692 Views
Last Modified: 2008-02-01
Can Radius Server be considered as SSO (many applications to be authenticated only once) if I want to provide one authentication form many applications ?

Because in my organization they asked to buy RSA for SSO, and my suggestion that radius can do similar job to SSO,,,Any insight ?

Regards

Kindly for RSA see below:
http://www.1st-computer-networks.co.uk/rsaEnterprise.htm
0
Comment
Question by:zillah
  • 3
  • 2
6 Comments
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17896782
RSA SecureID basically is a secondary logon to ensure higher level of security and then you'll have to login to your local network (Windows AD for example) if you want to access resources present there.

But with Radius, you can integrate it in such a way that (normal practice), it authenticates against the users based on their user credentials (usually windows AD).

I would suggest RSA since it adds the authentication process two-fold which is better.

Cheers,
Rajesh
0
 

Author Comment

by:zillah
ID: 17897071
Thanks Rajesh.

Just to verify things, Are both ( Radius and SSO (if we do not take RSA in consideration)) authenticate an user once,  and them after that you can access all services ? because my interpretation (correct me if I am wrong) to what you have mentioned that the only difference between Radius and SSO is the authentication process two-fold ?
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17897813
Yes. It only depends on the way you configure it. For example, a lot of companies just use Microsoft IAS server as radius server which in turn authenticate the user against the active directory. It is a free radius server that comes with MS software.

Cheers,
Rajesh
0
 

Author Comment

by:zillah
ID: 17898260
I am greatful to your answer Rajesh, and kindly could you go through the below link and give and comment it

http://www.antionline.com/showthread.php?p=913053#post913053

Regards
zillah
0
 
LVL 32

Accepted Solution

by:
rsivanandan earned 250 total points
ID: 17899129
With the PIX and IAS + AD you can have single sign on if you implement Client VPN for your users. PIX is a wonderful box to do that.

Go through this link;

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_example09186a00806de37e.shtml

It talks about how to setup PIX for VPN and authentication through IAS and AD

Cheers,
Rajesh

0

Featured Post

Superior storage. Superior surveillance.

WD Purple drives are built for 24/7, always-on, high-definition security systems. With support for up to 8 hard drives and 32 cameras, WD Purple drives are optimized for surveillance.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Trying to lock certain controls by calling function 7 56
shd and spl analysis 3 89
cradle point vpn to sonicwall 5 44
What is CEO Fraud? 8 56
You may have a outside contractor who comes in once a week or seasonal to do some work in your office but you only want to give him access to the programs and files he needs and keep privet all other documents and programs, can you do this on a loca…
Big data transfers via information superhighways require special attention and protection. Learn more about the IT-regulations of the country where your server is located. Analyze cloud providers and their encryption systems for safe data transit. S…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

947 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now