Hosted RADIUS and Captive Portal

Authentication Hub serving from the Cloud

IronWifi Cloud-based RADIUS Solution provides:

  • Reliable WPA2-Enterprise / 802.1x Authentication for WiFi networks
  • Captive portal supporting OAuth, SAML 2.0 and on-boarding
  • Works great with Meraki, Aruba, Ruckus and more
  • Connectors for synchronization with Google Apps, LDAP, SQL DB
  • Comprehensive reports and API interface
  • Up and Running in 60 seconds

IronWifi is a cloud-based RADIUS authentication and accounting service that provides resizable capacity in the cloud. Gain visibility into the strongest authentication available, at the driver’s seat of access control and client management for your network resources. Obtain and configure access control with minimal friction through a powerful and user-friendly web interface. Keep a birds-eye view of your users and networking devices while running on a proven cloud-based computing environment.

When you need a RADIUS server

With a RADIUS Server, know and have control over what users have access to your network.

RADIUS is an authentication service, telling your network access controller (NAS, router or wireless access point) whether a connecting client should be allowed to have access to your network and under what conditions, such as data download or bandwidth limits and time of day constraints.

Implement 802.1x security in your wireless network, or use a captive portal solution to authenticate users via credentials provided in a web form. In an 802.1x security deployment scenario, before any client is allowed to connect, verify identity using some of the following parameters:

  1. Username and Password – Authentication using credentials selected by client
  2. MAC address – Authentication based on hardware address of the client’s device
  3. Client certificate –  Authentication based on rock-solid, asymmetric encryption algorithm
  4. PIN Code – Create singular or multiple PIN codes from within the IronWifi Console to distribute to users as needed

Manage your clients manually from within our console, or from your external database. Our solution currently supports integration with Active Directory, LDAP, SQL, and Google Apps. Synchronization with your database will automatically update the list of users, groups and their access permissions.   IronWifi in Your Infrastructure   Clients seeking a reliable and secure method of authenticating users, visitors or mobile devices will find IronWifi a solution that is easy to deploy and maintain. WPA2-Enterprise (802.1x) is de-facto standard for networks that require manageability and the highest level of protection. It is widely used by Universities, Corporations and required by the PCI and HIPAA.

Management Console

We offer a web console that allows you to manage your virtual RADIUS server and control access to your wireless network using any modern web browser or your smart phone. Our GUI is simple, fast and available free of charge.

  desktop screen             Mobile screen    

IronWifi app on Google Play Tip: Download our free mobile application from the Google Play store. You will be able to take control directly from your Android smart phone, wherever you are.

Global Infrastructure

IronWifi is utilizing Amazon Web Services and Google Cloud platform to serve customers in more than 190 countries. We are steadily expanding global infrastructure to help our customers achieve lower latency and higher throughput, and to ensure that their data resides only in the Region they specify. As our customers grow their businesses, IronWifi will continue to provide infrastructure that meets their global requirements.
IronWifi Cloud
IronWifi takes pride in engineering a platform that is governed by the highest security standards. We never take shortcuts and “good enough.” is never accepted.


Principles of 802.1x network authentication standard do not allow processing or recording any sensitive network communication, except data received from a NAS device for accounting purposes.

If you have any questions regarding security please contact us at

Network Security

All communication with our systems or systems of third parties goes through encrypted protocols.

Our public web sites and API are only available on port 443 via http enforced with HSTS. You can verify security of our connections on the Qualys web site:


Communication with our Radius servers is encrypted using standard mechanisms and authentication details of users connecting to your Wireless network are transferred inside an encrypted EAP tunnel.


To protect our service from outages caused by failures and attacks, we are running our infrastructure in Amazon’s AWS cloud and Google Cloud platform. Cloud based infrastructure allows us to deliver very low latency, high availability and great flexibility to support even the largest implementations.

We provide a managed service, which means our components are redundant and highly available. If a load balancing component fails, it is restarted or replaced automatically and immediately.

Contact us to find out about our enterprise plans and partner program.