FreeRADIUS InkBridge

Concepts

The Concepts section is for users who are new to RADIUS and want to understand its purpose, functionality, and role within a network. It introduces the main ideas behind RADIUS and its use for network authentication, authorization, and accounting. This background knowledge prepares you for a deeper exploration or practical application of RADIUS in real-world scenarios.

Overview

This section introduces the RADIUS server, FreeRADIUS, and its core services.Its modular architecture, scalability, and support for various authentication types make it suitable for organizations of all sizes.

What is FreeRADIUS

FreeRADIUS is a widely used open-source RADIUS server offering authentication, authorization, and accounting services. Learn about the benefits of using the open-source software version.

Authentication Authorization Accounting (AAA)

Details the AAA framework, which is central to RADIUS operations. The framework is divided in the three distinct functionalities. Authorization is the process of allowing an authenticated user to access services on the network. Authentication is the verification process of validating an end-user’s credentials. Accounting operations tracks an end-user’s time and access on the network for auditing or billing purposes.

RADIUS System Components

The architecture and main components of a RADIUS system are explained such as: the Network Access Server (NAS), which manages user access and enforces network policies; RADIUS Server, which handles authentication, authorization, and policy enforcement; and Datastores, which are used to store information such as user credentials and session data. Each linked topic provides detailed information about how these components operate and interact within a RADIUS-based network.

RADIUS Sessions

Explains what RADIUS sessions are and how they’re managed in a network. Session Messages details the format and content of session messages. Processing describes the implementation and processing flow for AAA services.

Protocols

Defines the protocols used in the RADIUS ecosystem by the various components. RADIUS, an application layer protocol using UDP, manages network access with authentication and network protocols. It uses MD5 for packet authentication and supports various authentication methods like EAP, PAP, CHAP, and MS-CHAP.

Authentication with LDAP

Describes how a LDAP integration is used for user authentication with some examples for select vendors. Password Storage explains the methods of how the user’s information can be stored. Integrate Novell provides information on integrating Novell with RADIUS networks using LDAP.

Resources

Provides links to further help, mailing lists, and related documentation to support users in deploying FreeRADIUS.