Active Directory and RADIUS
VPN Clients connecting to FireRack can be authenticated using the RADIUS protocol, which is also supported by Microsoft's Active Directory.
PPTP and L2TP users connecting to FireRack can be authenticated against a number of different backends. The two primary methods are:
- Authenticate against FireRacks built-in user database
- Authenticate against one or more Radius servers
FireRack also supports the use of "RADIUS Realms", so the use can use email@example.com syntax.
Windows Active Directory
Microsoft Windows 2000/2003/2008/2012 Server fully supports the RADIUS protocol. Consequently, FireRack can authenticate users in one or more "Active Directory" domains. Each windows domain can be represented as a different "RADIUS Realm".
Per Realm or Per User Firewall Rule-sets
In addition to allowing users in multiple domains to authenticate on a single FireRack appliance, FireRack is also capable of applying different sets of firewall rules to member of different domains.
In a college environment, staff might use one realm and students another. This would then ensure that staff were permitted access to sensitive areas and students would not.