Configuring RADIUS applications in Okta

Okta RADIUS support can distinguish between different RADIUS-enabled apps and support them concurrently by setting up an Okta RADIUS appAn abbreviation of application. Essentially, it is a web-based site used to perform any number of specific tasks, and requires authentication from end users by signing in. for each configuration. Additionally, the Okta RADIUS application supports policy creation and assignment of the application to groupsGroups allow you to organize your end users and the apps they can access. Assigning apps to large sets of end users is made easier with groups..

RADIUS-enabled apps are easy to manage, as Admins can manage all of these apps and infrastructure configurations from the Okta AdminAn abbreviation of administrator. This is the individual(s) who have access to the Okta Administrator Dashboard. They control the provisioning and deprovisioning of end users, the assigning of apps, the resetting of passwords, and the overall end user experience. Only administrators have the Administration button on the upper right side of the My Applications page. Console.

Prerequisite: To use the Okta RADIUS application, you must install the Okta RADIUS agentA software agent is a lightweight program that runs as a service outside of Okta. It is typically installed behind a firewall and allows Okta to tunnel communication between an on-premises service and Okta's cloud service. Okta employs several agent types: Active Directory, LDAP, RADIUS, RSA, Active Directory Password Sync, and IWA. For example, users can install multiple Active Directory agents to ensure that the integration is robust and highly available across geographic locations. v. 2.5.0 or later. As this is an early-access feature, ask Okta Support for the new agent when you request the feature.

To obtain the agent, navigate to Settings > Downloads and select the Download link next to the RADIUS application.

Okta RADIUS App Features

There are three limitations on the Okta RADIUS application.

  1. The RADIUS port and shared secret are captured from the Okta Admin Console through any configured RADIUS applications or VPNs. Any information entered from prompts from the RADIUS agent is available if an orgThe Okta container that represents a real-world organization. enables the feature after the information is entered.
  2. WiFi infrastructure is not supported.
  3. The RADIUS agent only supports PAP-based authentication. No other protocols are supported.

The following steps descibe how to upgrade the agent and add a RADIUS application: