Thread Info
  • State Not Answered
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 3 replies
  • Subscribers 28 subscribers
  • Views 2128 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

WAF Radius authentication

Rafal Niznik

Hi People

 

i have configured incoming traffic to use WAF that redirects to Web server
When using this WAF firewall rule I can see that authentication option under Access Permission >> Authentication

My question is:

Is it possible in this scenario to use Radius authentication?  
Basic and that other form works fine but I simply do not want to create additional accounts

 

Thanks for advice

RAF 



This thread was automatically locked due to age.
Parents
  • 0

    As far as i know, this is not possible.

    WAF only supports Basic and form. 

  • 0 in reply to LuCar Toni

    I posted today another thread discussing Radius authentication in WAF.  I use the Form-based authentication (I did not need forwarding, so I cloned the regular Form-based).

    While it "works" with Radius, it attempts many, many authentications when Radius is used.  When local is used, it is one and done.  I would like to use Duo 2FA for the WAF (I do this on UTM already), but I cannot do so with these multiple attempts.  Getting prompted to authenticate 45 times when loading a web page is a little much :).

    Mostly I am posting this because if I understand OP correctly, it is possible and kind of "works."  I do start with a defined user in the XG, so my situation is slightly different.  When I use a different user, it does create a user for me, but it still doesn't work due to the issue above (or maybe another issue, who knows).

Reply
  • 0 in reply to LuCar Toni

    I posted today another thread discussing Radius authentication in WAF.  I use the Form-based authentication (I did not need forwarding, so I cloned the regular Form-based).

    While it "works" with Radius, it attempts many, many authentications when Radius is used.  When local is used, it is one and done.  I would like to use Duo 2FA for the WAF (I do this on UTM already), but I cannot do so with these multiple attempts.  Getting prompted to authenticate 45 times when loading a web page is a little much :).

    Mostly I am posting this because if I understand OP correctly, it is possible and kind of "works."  I do start with a defined user in the XG, so my situation is slightly different.  When I use a different user, it does create a user for me, but it still doesn't work due to the issue above (or maybe another issue, who knows).

Children