Microsoft Internet Security and Acceleration (ISA) Server 2004 authenticates users against Remote Authentication Dial-In User Service (RADIUS) servers. This is useful when ISA Server is installed in workgroup mode. RADIUS servers do not require domain membership of RADIUS clients from which authentication requests originate. Therefore, ISA Server, as a RADIUS client, does not have to belong to a domain for authentication purposes.
ISA Server passes information about a user to a designated RADIUS server, and then acts on the response that the RADIUS server returns. Transactions between the ISA Server computer and the RADIUS server are authenticated through a shared secret. This shared secret is never sent over the network.
RADIUS authentication is used to authenticate incoming remote client VPN requests to ISA Server, to authenticate outgoing requests from internal clients, and to authenticate requests from external client in publishing scenarios.
For more information about RADIUS authentication, see ISA Server 2004 online Help.
For more information about RADIUS authentication and deploying RADIUS authentication securely, visit the following Microsoft Web site:
For more information about RADIUS and Forms-based Client Authentication in ISA Server 2004, visit the following Microsoft Web site: