Solved

Can user access be granted to Windows Server logon via RADIUS Authentication (Non-Domain Server)

Posted on 2011-09-21
2
336 Views
Last Modified: 2013-11-05
Hello experts,

I was recently asked a question. We will be installing some windows servers in a DMZ, and non will be joined to a domain. Our question is, can we setup RADIUS authentication for accessing the server rather than creating admin accounts on all servers repeatedly. Our goal would be to create one admin account, and then use this to point the servers at a RADIUS server to authenticate users who are allowed to access.
0
Comment
Question by:ebiguy
2 Comments
 
LVL 42

Accepted Solution

by:
kevinhsieh earned 500 total points
ID: 36581877
That depends on how you are accessing the servers. It sounds like what you are asking for is what you get when you have a domain. In order to do that, you need to have a domain. ;-) You can have a separate forest/domain in the DMZ.
0
 

Author Comment

by:ebiguy
ID: 36590131
Yes, this is what I proposed when they asked me about this. However, these are network guys, and they are used to having RADIUS authenticate the logins for the network devices. I told them that in the Windows world, this is called a Domain with a domain controller. Go figure. So using RADIUS as the authentication server for a worksgroup server is out of the question. I will recommend a DMZ domain.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

The use of stolen credentials is a hot commodity this year allowing threat actors to move laterally within the network in order to avoid breach detection.
Phishing is at the top of most security top 10 efforts you should be pursuing in 2016 and beyond. If you don't have phishing incorporated into your Security Awareness Program yet, now is the time. Phishers, and the scams they use, are only going to …
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question