Forum Discussion
Clint_16698
Nimbostratus
NimbostratusSingle Sign On using Safeword+Radius
We are evaluating the Safeword 2factor authentication software. We are using RADIUS authentication to pass the token and pin to a radius server(windows IAS). It works great, but does anyone know if it is possible to use SSO with radius authentication when the web apps use AD credentials?
Our webapps accept AD passwords, not tokens/pins.
I'm trying to use 2factor authentication with radius, and also be able to pass AD credentials to a webapp upon launch.
Is it possible?
Thanks.
mal_57091Client,
Absolutely possible!!! The 6.0.3 release addresses just this requirement quite powerfully with a couple of cool new features. Firstly, auto-magically in 6.0.3 all RADIUS attributes returned in the authentication process (in the access-accept packet from the RADIUS server) are automatically saved as session variables in the format %session.radius.auth.X% where X is the attribute ID returned from RADIUS.
Then...(also new in 6.0.3) is a new tab called SSO available in each Master Group. In this tab you can configure username and/or password SSO variables and RegEx. So in your case all you need to do is in the Password field on the SSO tab for your Master Group is enter %session.radius.auth.X% (replace X with your password attribute) and then you can use %password% (or even better %primarypassword%) everywhere you would normally (Network, App and Portal Access) and FirePass will have substituted the RADIUS attribute value in it's place!!
Hope this helps you out!!!
Cheers,
Mal