ActivID RADIUS Front End (RFE)

The ActivID AS RADIUS Front End (RFE) solution enables OTP (including SMS OTP), static password authentication (including LDAP) and Push-Based authentication with the HID Approve™ mobile application over the Remote Authentication Dial-In User Service (RADIUS) protocol.

It is based on the FreeRADIUS server (for further information, go to http://freeradius.org).

The RADIUS Front End receives a RADIUS authentication request and translates it into an authentication call to the ActivID public API.

Optionally, an RADIUS Front End can be configured to redirect the RADIUS authentication request to an alternative server in the event that the authentication call to ActivID AS is unsuccessful.

The RADIUS Front End communicates with ActivID AS using the OpenID and SCIM APIs (replacing SOAP). The communication between the RADIUS Front End and ActivID AS is secured using SSL.

Once deployed, you administer the RADIUS Front End solution using the ActivID Management Console.

Note: The RFE does not support accounting.

The ActivID AS RADIUS Front End is highly scalable and can be deployed in high availability configurations. Thus, it can be used in large deployments. For details on this topic, refer to the ActivID Authentication Server RADIUS Front End Solution Guide available from the ActivID Customer Portal.