• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 888
  • Last Modified:

Forefront 2010 sp1 - Inbound Authentication with RADIUS (FreeRadius)

How to configure ForeFront TMG to authenticate users from RADIUS server (fully functional Freeradiuns on Linux server)?
I have a web service on some host on some port (xxxx).
That web service does not use authentication. All authentication should be performed on TMG server. All i need is Allow/Block functionality.

Users are stored in FreeRadius database.

My current setup is working fine if i use Windows users and groups (TMG is Active Directory integrated).
Windows users are able to acces HTTP service just fine.

I want to authenticate additional users through RADIUS server.
How to setup a TMG do that?

I have added a radius IP addres and secret on TMG. FreeRaidius is in debug mode. Freeradius does not show any requests comming from TMG.
Ivica Vugrinec
Ivica Vugrinec
1 Solution
You have to use a HTTP(S) Web publishing rule.

When you create the Listener, you have to use forms authentication with RADIUS.

So first create a listener that will listen on a free IP and port, configure that listener to use forms based authentication with RADIUS.

Publish the web site using the Publish web site wizard, the article below should help. The GUI is a bit different but the principle is the same.

Ivica VugrinecAuthor Commented:
Works great! Thank you.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

We Need Your Input!

WatchGuard is currently running a beta program for our new macOS Host Sensor for our Threat Detection and Response service. We're looking for more macOS users to help provide insight and feedback to help us make the product even better. Please sign up for our beta program today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now