Remote Authentication Dial-In User Service (RADIUS) is a networking protocol which is used to authenticate and authorize users accessing a remote network. It is an Authentication, Authorization, and Accounting (AAA) protocol that manages network access and provides centralized AAA. A few popular VPN clients using the Radius protocol include Cisco, Fortinet, OpenVPN and many more.

miniOrange secures access to your VPN Clients by adding an second factor of authentication (2FA). This improves security as it reduces avenues for phishing attacks, and also improves access to your applications.

Follow the steps given below to configure your Radius application.

 Configure your Radius Applications

• Login as a customer from the Admin Console.
• Go to Apps >> Add Application 

• Click on the Create App button under Radius tab.

• From the list of pre-configured apps, click on your preferred application. If your application is not in the list, you can click on the Radius Client option.

• Enter the information given below in the respective fields.

Field	Action
Client Name	Any name for your reference.
Client IP Address	IP address of VPN server which will send Radius authentication request.
Shared Secret	Security key. For Eg. "sharedsecret" (Keep this with you, you will need to configure same on VPN Server).
Include Password & OTP in same Request	Check this option for clients which takes password and the OTP in same request. Otherwise keep it unchecked.
Send Groups in Response	Enable this to send user groups as Vendor-Specific Group Attributes.
Radius Accounting	Enable this if you wish to receive accounts of your usage to your radius server.


• In the Add Policy section, you can add the radius client policy to your respective groups.
• Select the login method from the options in the dropdown.
• Enable the authentication method based on your requirement and click on Save.