Hosted Radius Server

Your Dedicated Authentication Hub hosted in a Cloud

Here’s just a few of the great things you will get:

  • Reliable 802.1x Authentication for your Wifi Clients
  • Meet HIPAA, PCI-DSS, ISO27000 compliance requirements
  • Authenticate using Password, MAC address or Certificate
  • 20 comprehensive AAA reports
  • API interface for integration with custom systems
  • Up and Running in 60 seconds

 

IronWifi is a RADIUS-based authentication service that provides resizable compute capacity in the cloud. It is designed to deliver strong authentication and make management of clients accessing network resources easier for system administrators.

Powerful and simple to use web interface allows you to obtain and configure access control with minimal friction. It provides you with complete control of your users and networking devices and lets you run on proven cloud-based computing environment. IronWifi reduces the time required to obtain and configure new RADIUS instances to minutes, allowing you to quickly scale capacity, both up and down, as your requirements change. IronWifi changes the economics of authentication service by allowing you to pay only for capacity that you actually use. IronWifi provides system administrators failure resilient tool to isolate themselves from common failure scenarios.

IronWifi can be deployed to authenticate clients accessing your infrastructure in less than 60 seconds.

When you need a RADIUS server

You need a RADIUS server if you wish to know the identity and have control over users and devices accessing your wireless network.

RADIUS is an authentication service, telling your network access controller (NAS, router or wireless access point) whether connecting client should be allowed to have access to your network, and what additional connection attributes have to be applied to his session, like maximum allowed data to download or bandwidth that the client may consume.

Typically, you need RADIUS if you want to implement 802.1x security in your wireless network, or use a captive portal solution to authenticate user’s via credentials provided in a web form.

In an 802.1x security deployment scenario, before any client is allowed to connect, we verify provided identity with some of available options:

  1. Username and Password – the most popular choice is authentication using provided credentials
  2. MAC address – authenticate connecting device based on hardware address of the wireless network interface
  3. Client certificate – strong encryption algorithm authenticating client based on provided SSL certificate

You can manage your clients manually within our console, or in your existent external database. Our solution currently supports integration with Active Directory, LDAP, SQL, and Google Apps.

Synchronization with your database will automatically update list of users, groups and their access permissions.

 

IronWifi in Your Infrastructure

 

Clients seeking reliable and secure method of authenticating their users, visitors or mobile devices, will find IronWifi a solution that is easy to deploy and maintain.

WiFi Security Mode:

  • Time to Break:
  • Password Management:
  • Client Access Control:
  • Reporting:
  • RADIUS support:
  • Overal Security:

WEP

  • 30-120 seconds
  • Single Pre-Shared Key
  • No
  • No
  • No
  • Weak

WPA/WPA2-PSK

  • 1-6 hours
  • Single Pre-Shared Key
  • No
  • No
  • No
  • Medium to Weak

WPA2-Enterprise is de-facto standard for wireless networks, that require manageability and highest level of protection. It is widely used by Universities, Corporations and also required by the PCI and HIPAA.

You need a RADIUS server to implement WPA2-Enterprise security mode in your wireless infrastructure.

Management Console

We are offering you a web console that allows you to manage your virtual RADIUS server and control access to your wireless network using any modern web browser or your smart phone. Our GUI is simple, fast and available online.

  desktop screen             Mobile screen    

IronWifi app on Google Play

Tip: Download our free mobile application from the Google Play store. You will be able to take control directly from your Android smart phone, wherever you are.

 

Global Infrastructure

IronWifi is utilizing Amazon Web Services to serve customers in more than 190 countries.

We are steadily expanding global infrastructure to help our customers achieve lower latency and higher throughput, and to ensure that their data resides only in the Region they specify. As our customers grow their businesses, IronWifi will continue to provide infrastructure that meets their global requirements.

IronWifi Cloud

IronWifi takes pride in engineering a platform that is governed by the highest security standards. We never take shortcuts and “good enough.” is never accepted.

Security

Principles of 802.1x network authentication standard, do not allow us to process or record any sensitive network communication, except data sent from your NAS device for accounting purposes. If you have any questions regarding security please contact us at security@ironwifi.com. For urgent matters, please call us at +1 (407) 680-2872 (it will reach someone on our security team directly).

Network Security

All communication with our systems goes through encrypted protocols. Authentication details are tranfered inside encrypted PEAP/EAP-TLS tunnel. In fact, also our API is only available on port 443 via HTTPS and our public consoles force HTTPS with HSTS.

Availability

To protect our service from outages caused by failures and attacks, we are running our infrastructure in Amazon’s AWS cloud. Cloud based infrastructure allows us to deliver very low latency, high availability and great flexibility to support even the largest implementations.