RADIUS Server

A Remote Authentication Dial-in User Service (RADIUS) server is most commonly a "third party" server, used for authentication of wireless clients who wish to connect to an access point. The wireless client contacts an access point (a RADIUS client), which in turn communicates with the RADIUS server. The RADIUS server performs the authentication by verifying the client's credentials, to determine whether the device is authorized to connect to the access point's LAN. If the RADIUS server accepts the client, it responds by exchanging data with the access point, including security keys for subsequent encrypted sessions.

OpenRG can act both as a RADIUS client and a server, and can be used for the authentication of any clients--wireless or wired.

This enables a scenario of multiple gateways acting as RADIUS clients, connected to a "master" gateway that acts as a RADIUS server. Such a scenario can be useful in an enterprise consisting of multiple divisions.

Figure 3.364: RADIUS Server Scenario