RFVDB
asked on
Recommended Commercial RADIUS solution for Linux Authentication
I'm looking for a commercial RADIUS solution that Linux Servers can authenticate against. Specifically:
1) Primary purpose is for Linux user authentication
2) Is there any RADIUS solution that can replicate to other RADIUS servers, just like Microsoft Active Directory Servers can replicate to each other? This can even be a one way replication.
3) Preferably this RADIUS solution runs on Linux and not windows.
4) Preferably is a supported RADIUS solution, i.e. paid for product that we can get support on as needed. Unless there is a simple to use free version that doesn't require extensive learning to use.
Thanks!
1) Primary purpose is for Linux user authentication
2) Is there any RADIUS solution that can replicate to other RADIUS servers, just like Microsoft Active Directory Servers can replicate to each other? This can even be a one way replication.
3) Preferably this RADIUS solution runs on Linux and not windows.
4) Preferably is a supported RADIUS solution, i.e. paid for product that we can get support on as needed. Unless there is a simple to use free version that doesn't require extensive learning to use.
Thanks!
ASKER
Hi Noci,
As you can see, I don't know much about RADIUS and from your answer it looks like the better way to go for my purpose is some sort of commercial LDAP solution.
Do you have any suggestions for LDAP solutions other than Microsoft AD?
And can LDAP solutions replication to multiple servers like Microsoft AD can?
I found this, what do you think?
https://www.turnkeylinux.org/openldap
https://marketplace.vmware.com/vsx/solutions/turnkey-openldap-appliance?ref=related
https://symas.com/symasopenldap/
As you can see, I don't know much about RADIUS and from your answer it looks like the better way to go for my purpose is some sort of commercial LDAP solution.
Do you have any suggestions for LDAP solutions other than Microsoft AD?
And can LDAP solutions replication to multiple servers like Microsoft AD can?
I found this, what do you think?
https://www.turnkeylinux.org/openldap
https://marketplace.vmware.com/vsx/solutions/turnkey-openldap-appliance?ref=related
https://symas.com/symasopenldap/
Samba 4+ can act as a stand-in for AD. it is running an internal kerberos & LDAP engine.
Many of the IdM systems sold are linux based and employ Bind, Openldap, Kerberos etc. (and also can provide Radius for use by network equipment).
(I used the wrong abbreviation before IPAM is IP Address Management, IdM are Identity management systems.)
https://en.wikipedia.org/wiki/Identity_management_system
I have no opinion on "best" commercial systems.
I use openldap + phpldapadmin to manage a fairly small tree.
Many of the IdM systems sold are linux based and employ Bind, Openldap, Kerberos etc. (and also can provide Radius for use by network equipment).
(I used the wrong abbreviation before IPAM is IP Address Management, IdM are Identity management systems.)
https://en.wikipedia.org/wiki/Identity_management_system
I have no opinion on "best" commercial systems.
I use openldap + phpldapadmin to manage a fairly small tree.
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Radius is meant for one shot authentication authentication & authorisation details presented at once.....
Radius doesn't provide a home directory, uid, gid code etc.)
So i guess you mean LDAP authentication..., there are lots of tools available.
(openldap is the native solution, others do exist, for commercial providers look for IPAM solutions).
LDAP != AD btw. With LDAP the client system asks for a password at the central repository. AD authenticates with Kerberos.