Hosted RADIUS Servers and Captive Portal
Authentication for Wireless Networks and Internet Hotspots
IronWiFi ℠ – Cloud-based RADIUS AAA Solution provides:
- RADIUS as a Service designed for customers of any size
- Captive Portal with support for Social Networks, SAML, Billing, Vouchers, SMS, and more
- Native support for devices from 25+ vendors
- Connectors to external Identity Providers like Google Apps
- Comprehensive reports and REST API interface
- Ready to be used with WiFi4EU and Eduroam
Call to get set up by our Networking Specialists: 1-800-963-6221 *
* For customers committing to connect 10 or more access points. Phone support operating hours are Mon-Fri, 10am-6pm ET
RADIUS is an authentication service, telling your Network Access Controller (Firewall, Router or Wireless Access Point) whether a connecting client should be authorized to access your network and under what conditions, such as data download or bandwidth limits and time of day constraints.
Our typical customers include:
Implement WPA-Enterprise security in your wireless network, or use a Captive Portal solution to authenticate users with a web form.
In an 802.1x security deployment scenario, before any client is authorized to connect to your network, we verify identity using the following methods:
- Username and Password – Authentication using credentials provided by connecting client
- MAC address – Authentication based on hardware address of the client’s device
- Client certificate – Authentication based on rock-solid, asymmetric encryption algorithm
- Voucher – Predefined PIN codes distributed to your guests
Manage your clients from within our Console, in your External Database or automatically using our API. Our platform provides connectors for Active Directory, LDAP, SQL, Google Apps and REST API. Periodic synchronization will automatically update the list of users, groups, organizational units and their access privileges.
If you have any questions regarding security, please contact us at [email protected].
All communication with our systems or systems of third parties goes through encrypted protocols.
Our public websites and API are only available on port 443 via HTTP enforced with HSTS. You can verify the security of our connections on these websites:
Communication with our Radius servers is encrypted using standard mechanisms and authentication details of users connecting to your Wireless network are transferred inside an encrypted EAP tunnel.
ISO 9001 and ISO 27000 Certification
Internal standards and Quality Management System standards of IronWiFi comprehend in the long term also rules for information security management. IronWiFi’s aim for improvement of processes and providing for security requests of its clients has logically escalated to certification pursuant to the international standard and ISO 9001 ISO 27000. During 2015 IronWiFi had been preparing for the certification process and in the days of July, 24 – 28, 2016 it passed the certification audit conducted by the company eucert, s.r.o..
Internationally accepted standard ISO 27000 specifies requirements for definition, introduction, operation, monitoring, examination, maintenance and improvement of documented Information Security Management System (ISMS – Info) in the context of aggregate risks related to activities of the organization. It specifies requirements for introduction of security measures that are modified according to requirements of individual organizations or their departments. The reason for this standard is to set and monitor rules for information security and apply them within the whole security.
IronWiFi is the holder of the Certificate in Information Security Management pursuant to the ISO/IEC 27001:2013 and ISO/IEC 9001:2009 standard in the field of project management, design, development, integration, deployment and maintenance of information systems, information systems consulting services.
To protect our service from outages caused by failures and attacks, we are running our infrastructure on leading Cloud platforms. The cloud-based infrastructure allows us to deliver very low latency, high availability and great flexibility to support even the largest implementations.
We provide a managed service, which means our components are redundant and highly available. If a load balancing component fails, it is restarted or replaced automatically and immediately.