Hosted Radius Server
Your Dedicated Authentication Hub hosted in a Cloud
Here’s just a few of the great things you will get:
- Reliable 802.1x Authentication for your Wifi Clients
- Meet HIPAA, PCI-DSS, ISO27000 compliance requirements
- Authenticate using Password, MAC address or Certificate
- 20 comprehensive AAA reports
- API interface for integration with custom systems
- Up and Running in 60 seconds
IronWifi is a RADIUS-based authentication service that provides resizable compute capacity in the cloud. It is designed to deliver strong authentication and make management of clients accessing network resources easier for system administrators.
Powerful and simple to use web interface allows you to obtain and configure access control with minimal friction. It provides you with complete control of your users and networking devices and lets you run on proven cloud-based computing environment. IronWifi reduces the time required to obtain and configure new RADIUS instances to minutes, allowing you to quickly scale capacity, both up and down, as your requirements change. IronWifi changes the economics of authentication service by allowing you to pay only for capacity that you actually use. IronWifi provides system administrators failure resilient tool to isolate themselves from common failure scenarios.
IronWifi can be deployed to authenticate clients accessing your infrastructure in less than 60 seconds.
RADIUS is an authentication service, telling your network access controller (NAS, router or wireless access point) whether connecting client should be allowed to have access to your network, and what additional connection attributes have to be applied to his session, like maximum allowed data to download or bandwidth that the client may consume.
Typically, you need RADIUS if you want to implement 802.1x security in your wireless network, or use a captive portal solution to authenticate user’s via credentials provided in a web form.
In an 802.1x security deployment scenario, before any client is allowed to connect, we verify provided identity with some of available options:
- Username and Password – the most popular choice is authentication using provided credentials
- MAC address – authenticate connecting device based on hardware address of the wireless network interface
- Client certificate – strong encryption algorithm authenticating client based on provided SSL certificate
You can manage your clients manually within our console, or in your existent external database. Our solution currently supports integration with Active Directory, LDAP, SQL, and Google Apps.
Synchronization with your database will automatically update list of users, groups and their access permissions.
Clients seeking reliable and secure method of authenticating their users, visitors or mobile devices, will find IronWifi a solution that is easy to deploy and maintain.
WiFi Security Mode:
- Time to Break:
- Password Management:
- Client Access Control:
- RADIUS support:
- Overal Security:
- 30-120 seconds
- Single Pre-Shared Key
- 1-6 hours
- Single Pre-Shared Key
- Medium to Weak
- Passwd, MAC, Cert
WPA2-Enterprise is de-facto standard for wireless networks, that require manageability and highest level of protection. It is widely used by Universities, Corporations and also required by the PCI and HIPAA.
You need a RADIUS server to implement WPA2-Enterprise security mode in your wireless infrastructure.
IronWifi is utilizing Amazon Web Services to serve customers in more than 190 countries.
We are steadily expanding global infrastructure to help our customers achieve lower latency and higher throughput, and to ensure that their data resides only in the Region they specify. As our customers grow their businesses, IronWifi will continue to provide infrastructure that meets their global requirements.
Principles of 802.1x network authentication standard, do not allow us to process or record any sensitive network communication, except data sent from your NAS device for accounting purposes. If you have any questions regarding security please contact us at firstname.lastname@example.org. For urgent matters, please call us at +1 (407) 680-2872 (it will reach someone on our security team directly).
All communication with our systems goes through encrypted protocols. Authentication details are tranfered inside encrypted PEAP/EAP-TLS tunnel. In fact, also our API is only available on port 443 via HTTPS and our public consoles force HTTPS with HSTS.
To protect our service from outages caused by failures and attacks, we are running our infrastructure in Amazon’s AWS cloud. Cloud based infrastructure allows us to deliver very low latency, high availability and great flexibility to support even the largest implementations.