With privacyIDEA 2.22 we added the possibility to pass more useful userinformation to a RADIUS client like a VPN. The administrator can add a policy to include the resolver and the realm of a user who authenticated successfully. This response data can then be used in the FreeRADIUS plugin and modified by regular expressions to add any arbitrary RADIUS attribute in the RADIUS response, which then would be sent to the VPN. This additional information can be used by Cisco ASA, Citrix Netscaler or any other enterprise grade VPN to put the user into certain subnets or to assign resource to the user.
FreeRADIUS
5 posts
privacyIDEA adds Nitrokey OTP support in release 2.15 Today we released privacyIDEA 2.15. In this release privacyIDEA command line client supports the initialization and enrollment of the Nitrokey. The Nitrokey is an open USB devices that acts as authentication device and password safe. It can hold your PGP keys but […]
Today we released privacyIDEA 2.11. You can download privacyIDEA from Github, install it from the python package index or via the launchpad repository on Ubuntu 14.04. Updating an Ubuntu installation from launchpad works out of the box. When updating a pip installation, please note that a new database table was […]
Attention: This HowTo is outdated! There is an improved HowTo included in the privacyIDEA documentation This Howto describes the setup of privacyIDEA on CentOS 7 including a FreeRADIUS 3 configuration. This Howto is provided by Patrick Hirschbühl. Thanks a lot for this contribution! privacyIDEA + MySQL on CentOS 7 Minimal […]
A new howto is available at howtoforge. It shows how you can setup a privacyIDEA system on CentOS 6.5 in conjunction with the FreeRADIUS. Thus being able to have one central authentication system and connect many applications to this system via the RADIUS protocol.