Install the Okta RADIUS Server Agent for Windows

This topic describes how to install the Windows RADIUS agent.

  • When you install the RADIUS server agent, use an account with the Super Admin role. Or use another role that has read-only admin and app admin permissions assigned to it.
  • Use a dedicated service account on your server to authorize RADIUS server agents. This ensures that authorizations aren't tied to a user account. These authorizations could be lost if the user leaves the organization.
  • Give appropriate admin permissions to service accounts used for RADIUS server agents. See the Multifactor Authentication section of Standard administrator roles and permissions.

  1. In the Admin Console, go to SettingsDownloads.
  2. Scroll to Okta RADIUS Server Agent (EXE) and then click Download Latest.
  3. Run the installer. Click Next on the initial Important Information and License Information pages.
  4. Choose a location for the Installation folder and then click Install.
  5. Optional. Enter your proxy information on the Okta RADIUS Agent Proxy Configuration page.
  6. Click Next.
  7. On the Register Okta RADIUS Agent page, enter the complete URL for your org, like https://mycompany.okta.com. For testing in your preview org, you can enter the URL for your Okta Preview Sandbox org, like https://mycompany.oktapreview.com.
  8. Click Next. The Okta Sign In page appears.
  9. Sign in to the service-specific Okta account.
  10. Click Allow Access.
  11. Click Finish.

    If you encounter Error code 12: Could not establish trust relationship for the SSL/TLS service channel, ensure that you're running the latest version of the agent. Older agent versions don't support Transport Layer Security (TLS) 1.2.

  12. Configure a RADIUS app in Okta. See RADIUS applications in Okta.