Active Directory and RADIUS

LDAP / Active DirectoryVPN Clients connecting to FireRack can be authenticated using the RADIUS protocol, which is also supported by Microsoft's Active Directory.

PPTP and L2TP users connecting to FireRack can be authenticated against a number of different backends. The two primary methods are:

  • Authenticate against FireRacks built-in user database
  • Authenticate against one or more Radius servers

FireRack also supports the use of "RADIUS Realms", so the use can use username@realm.com syntax.

Windows Active Directory

Microsoft Windows 2000/2003/2008/2012 Server fully supports the RADIUS protocol. Consequently, FireRack can authenticate users in one or more "Active Directory" domains. Each windows domain can be represented as a different "RADIUS Realm".

Per Realm or Per User Firewall Rule-sets

In addition to allowing users in multiple domains to authenticate on a single FireRack appliance, FireRack is also capable of applying different sets of firewall rules to member of different domains.

In a college environment, staff might use one realm and students another. This would then ensure that staff were permitted access to sensitive areas and students would not.