RADIUS authentication⚓︎

What is the RADIUS authentication?⚓︎

RADIUS (Remote Authentication Dial-In User Service) is a client-server protocol used primarily for authentication and authorization of users during dial-up connections in corporate networks. Password Safe can also benefit from the advantages of a RADIUS server. In particular, multi-factor authentication should be mentioned here. But all other RADIUS-typical functions can also be used. Further information can be found for example at Wikipedia.

Requirements⚓︎

In order for Password Safe to address a RADIUS server, the following requirements must be met:

• A RADIUS server must be available and accessible via the network.
• Access to the Password Safe AdminClient must be set up on the RADIUS server.
• A corresponding Secret must be configured for access.
• In Password Safe, users must have been imported from the AD in Masterkey mode.

Configuration⚓︎

The actual connection of the RADIUS server is simple:

• Use RADIUS - First, the usage is activated.
• Host Address - The address of the RADIUS server is stored here.
• Secret - Refers to the secret stored for the Password Safe AdminClient.
• AUTH Port - The so-called AUTH port of the RADIUS server is specified here.
• ACT Port - The ACCT port of the RADIUS server can also be stored; if required.
• Timeout - The time the RADIUS server has to react; can also be configured.