Adding a RADIUS agent

RADIUS
RADIUS is an acronym, short for Remote Access Dial-In User. An instance of the RADIUS service installation to which different devices may connect to for network authentication or access.

RADIUS Client: RADIUS clients are network access servers—such as wireless access points, 802.1X-capable switches, virtual private network (VPN) servers, and dial-up servers. This entry area shows the name and device IP.

Prerequisites

  • Visual C++ - This update can be downloaded here.
    Microsoft .NET v4.6 This update can be downloaded here.


Before you start

  • Ensure that you have administrative access to your Passly on Demand tenant.
  • You have access to a computer that will host the RADIUS Client
  • You have access to your desired VPN capable device and are familiar with the configuration.

 

Section 1: Add a RADIUS Agent

Below are the steps to follow to add a RADIUS Agent that includes one RADIUS Client.

 

Steps

  1. Log into your instance of Passly.
  2. Select the Auth Manager area on the left side to reveal the Agents area.
  3. Select the Plus sign at the bottom right corner to select and add a new Agent.
    blue.PNG
  4. Select “RADIUS Server” from the list
    mceclip0.png
  5. Ensure the agent is "Enabled".
    mceclip1.png
  6. Enter a name for the Agent that will identify its’ uniqueness from the other agents.
    mceclip3.png
    Note: We recommend naming the agent based on the Windows server it is installed on.
  7. Select how often the Sync agent will check in (Sync Frequency)
    mceclip4.png
  8. Select the Authentication Policy.
    mceclip5.png
    Note: We recommend setting up a policy that is unique to RADIUS for best results.
  9. Copy down the following:
    1. ID: The unique ID of the agent. (formerly Client ID)
    2. Key: The auto-generated secret value of the agent. (formerly Client Secret)
    3. Home Realm: The home realm your agent will connect to.
  10. As you will be prompted for this information when you are installing the RADIUS Agent service.
    Note: The above information is to be used ONLY at the time of installing the service
  11. Select the desired Authentication Policy to be in place for the Agent
  12. Select the RADIUS Configuration tab
    mceclip6.png
  13. Select the port you wish to use for communication (default port is 1812)
    mceclip7.png
  14. Select the “Add RADIUS Client” button
    mceclip8.png
  15. In the “Add RADIUS Client” screen, perform the following:
    mceclip9.png
    1. Add a Friendly name for the client.
    2. Add the Client IP Address.
    3. Add a Client Shared Secret.
    4. Confirm Shared Secret (Formerly Confirm Password) for the Client.
      Note: This is the shared secret that will be placed on the forwarding device/router to authenticate the communication.
    5. Select the Authentication Policy.
    6. Select the “Add RADIUS Client”
      Note: if you would like to add more than one client, select the “add another” check box prior to selecting the Add RADIUS client button.
  16. Press “Add Agent” to close the “Add New Agent Screen.”
         

Download the RADIUS agent installer

Before you start

  1. Ensure that you have administrative access to your Passly tenant.
  2. You should be performing the following on the Machine that will host the RADIUS Service.
  3. .NET 4.6.0 or Higher must be installed on the host machine or the RADIUS installation package will not install.
  4. Log into your Passly tenant.
  5. Select the “Auth Manager” area on the left side of the screen.
  6.  Locate the preferred RADIUS agent in the list.
  7. Download the RADIUS installer by one of the following options:
  8. Select the three dots to the right and then select “Download” from the dropdown.
  9. Select the agent name and then select the “Download Installer” button.
  10. Once downloaded, run through the installation wizard on the machine that will host the RADIUS service.    
  11. Enter in the “ID”, “Key” and “Home Realm” that were copied during the RADIUS client creation.
  12. Finish the installation.

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Contact us