Solved

Configuring RADIUS server in windows 2003 to use with external firewalls

Posted on 2008-11-01
6
2,264 Views
Last Modified: 2010-04-21
Hello everyone,
I really need some help or guidance in setting up radius server for integration with my Linux firewall...namely ZEROSHELL.
Thanks,
0
Comment
Question by:godwindotnet
  • 2
  • 2
  • 2
6 Comments
 

Author Comment

by:godwindotnet
ID: 22860710

Thanks for the reply CorpComp...

This is the part thats kind of making me feel uncertain about what I'm doing...

" you can setup a remote access policy in IAS to allow a certain group to authenticate, and then place the users in that group."

Do you have any links that can teach me exactly about this process??
Thanks
0
 
LVL 6

Expert Comment

by:CorpComp
ID: 22860643
You need to install "Internet Authentication Service" on your server.  You can do this through "add remove windows components"  Then you setup a profile for your firewall, all you should need to configure is the IP address and the Pre-Shared Key.

You have a choice on how you choose users that are allowed to authenticate.  You can set the attribute on each individual user in AD (under the dial-in tab), or you can setup a remote access policy in IAS to allow a certain group to authenticate, and then place the users in that group.

I am not sure how to configure your firewall to communicate with your RADIUS server, but remember when you are doing the configuration to use the same pre-shared key that you setup in the IAS profile.

Good luck.
0
 
LVL 35

Expert Comment

by:ShineOn
ID: 22862496
How does "Novell NetWare Network Software tie into this?  I ask because that's one of the zones this question is posted to.

When you ask about RADIUS integration with your Linux firewall, what exactly are you looking for?  There are many versions and flavors of RADIUS.  The only benefit to using the RADIUS capabilities of IAS is its integration with AD.

You didn't ask about directory-service or LDAP integration, just RADIUS integration - does that mean you have a RADIUS server already installed/configured or does it mean you don't know exactly what you're looking for beyond RADIUS?

RADIUS stands for Remote Authentication Dial In User Service and is an IETF standard for user authentication to allow public access to private resources.  The most popular RADIUS server in the world is FreeRADIUS.  RADIUS is a major component of WPA 802.1x wireless authentication, in addition to the more-common remote-access authentication service.  IAS is Microsoft's proprietary implementation of RADIUS.

If you have a RADIUS server and you're just asking how to go about integrating it with your firewall, the answer is far different from having a firewall that can integrate with RADIUS and wanting to know what RADIUS server to use, or wanting to provide identity-based access via a form of RADIUS/firewall integration, and what to use depends also on what directory service you use, whether you want to use Windows services "on the edge" and whether direct integration with a platform directory is necessary or if LDAP integration is sufficient or even preferred, which also is flavored by whether you have an enterprise-class directory service like eDirectory or a platform-specific directory like AD.
0
Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

 
LVL 6

Accepted Solution

by:
CorpComp earned 250 total points
ID: 22863588
0
 
LVL 35

Assisted Solution

by:ShineOn
ShineOn earned 250 total points
ID: 22864184
Here's one that talks specifically about ZEROSHELL firewall and FreeRADIUS integration for 802.1x enterprise WPA.

http://www.wi-fiplanet.com/tutorials/article.php/3748146
0
 

Author Closing Comment

by:godwindotnet
ID: 31512374
Thanks for the time....
but I think I misinterpreted the question...
I basically wanted to learn how to setup RADIUS server for LAN clients on Windows 2003 server
0

Featured Post

Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Numerous times I have been asked this questions that what is it that makes my machine log on so slow, there have been cases where computers took 23 minute exactly after taking password and getting to the desktop. Interesting thing was the fact th…
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
This tutorial gives a high-level tour of the interface of Marketo (a marketing automation tool to help businesses track and engage prospective customers and drive them to purchase). You will see the main areas including Marketing Activities, Design …
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question