Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Does ISA support Radius Authentication?

1 view
Skip to first unread message

Uso

unread,
Feb 9, 2003, 1:31:11 AM2/9/03
to
Hi,
does ISA server support Radius authentication instead of NT authentication?
It doesn't look like it can do that, is there an add-on that gives this
functionality?
Do you know of any other easy to use and not very expensive Proxy server
that can use radius authentication?

thanks and regards
Uso


Jim Harrison [MSFT]

unread,
Feb 9, 2003, 10:25:25 AM2/9/03
to
FP1 brings RSA SecurID to ISA if that's an option for you.
No; ISA doesn't "do" RADIUS.

--
Jim Harrison [ISAQFE]
Read the help, books and articles!


This posting is provided "AS IS" with no warranties, and confers no rights.


"Uso" <uso...@gmx.net> wrote in message
news:b24sjf$ni...@news-dxb.emirates.net.ae...

Paul Baldwin

unread,
Feb 10, 2003, 4:52:57 AM2/10/03
to
But RRAS does. It works quite happily along side ISA, after all, ISA wizards
will set up remote access through RRAS for you.

I once used it together with running IAS on Win2K DCs, but Microsoft's IDC
documentation specifically states that they preferred not to use RADIUS on
VPN firewalls - I'm not sure if this suggests that its a bad idea or not.

"Jim Harrison [MSFT]" <j...@online.microsoft.com> wrote in message
news:ePPfs9E0CHA.2868@TK2MSFTNGP12...

Thomas W Shinder [MVP]

unread,
Feb 10, 2003, 12:25:22 PM2/10/03
to
Hi Paul,

They didn't have a preference. They said that there was no need for
centralized authentiation or accounting, so they didn't use it in their
scenario.

"The Remote Authentication Dial-In User Service (RADIUS) was not used in the
architecture because centralized accounting and management for VPN
connections were not required to support remote access for the
administrators. Accounting requests (such as accounting start or stop) and
authentication requests, such as Access-Accept or Access-Reject, are logged
on to the RRAS server. The RRAS server has a feature to log status
periodically, such as interim accounting requests. This logging feature is
not enabled because it can result in high-volume logs. A custom location,
away from the default location, is specified for the log file, so that
security can be tightened on the directory."

HTH,
--
Tom
www.isaserver.org/shinder
Get the books!
ISA Server and Beyond: http://tinyurl.com/1jq1
Configuring ISA Server: http://tinyurl.com/1llp
MVP -- ISA Server 2000


"Paul Baldwin" <pa...@supanet.removethisbit.net.uk> wrote in message
news:uLczjoO0CHA.1624@TK2MSFTNGP10...

0 new messages