FreeRADIUS

Last updated
FreeRADIUS
Developer(s) FreeRADIUS Development Team
Initial releaseAugust 1999;25 years ago (1999-08)
Stable release
3.2.6 [1]   OOjs UI icon edit-ltr-progressive.svg / 24 August 2024;2 months ago (24 August 2024)
Repository
Written in C; bundled scripts are mostly Perl
Operating system Unix-like
Available in English
Type RADIUS Server
License GPLv2
Website freeradius.org

FreeRADIUS is a modular, high performance free RADIUS suite developed and distributed under the GNU General Public License, version 2, and is free for download and use. The FreeRADIUS Suite includes a RADIUS server, a BSD-licensed RADIUS client library, a PAM library, an Apache module, and numerous additional RADIUS related utilities and development libraries. [2]

Contents

In most cases, the word "FreeRADIUS" refers to the free open-source RADIUS server from this suite.

FreeRADIUS is the most popular open source RADIUS server [3] and the most widely deployed RADIUS server in the world. [3] It supports all common authentication protocols, and the server comes with a PHP-based web user administration tool called dialupadmin. It is the basis for many commercial RADIUS products and services, such as embedded systems, RADIUS appliances that support network access control, and WiMAX. It supplies the AAA needs of many Fortune-500 companies, telcos, and Tier 1 ISPs. It is also widely used in the academic community, including eduroam. The server is fast, feature-rich, modular, and scalable.

History

FreeRADIUS was started in August 1999 by Alan DeKok and Miquel van Smoorenburg. Miquel had previously written the Cistron RADIUS server, which had gained widespread usage once the Livingston server was no longer being maintained. FreeRADIUS was started to create a new RADIUS server, using a modular design that would encourage more active community involvement.[ citation needed ]

As of November 2014, the FreeRADIUS Project has three Core Team members: Alan DeKok (Project Leader), Arran Cudbard-Bell (Principal Architect), and Matthew Newton. [4]

The latest major release is FreeRADIUS 3. FreeRADIUS 3 includes support for RADIUS over TLS, including RadSec, a completely rewritten rlm_ldap module, and hundreds of other minor consistency and usability enhancements. The latest mature version is maintained for stability rather than features.

The previous major release v2.2.x has entered the final phase of its lifecycle, and will now receive security fixes only [5]

A survey in 2006 showed that its user base totals 100 million people. [3]

Features

Modules included with the server core support LDAP, MySQL, PostgreSQL, Oracle, and many other databases. It supports all popular EAP authentication types, including PEAP and EAP-TTLS. [6] More than 100 vendor dictionaries are included, ensuring compatibility with a wide range of NAS devices. [7]

Version 2.0.0 added support for virtual hosting, IPv6, VMPS, and a new policy language that simplifies many complex configurations.

Administration tools

SoftwareHomepageVersionLatest Release
daloRADIUShttps://github.com/lirantal/daloradius2.2 beta03.07.2024
RADIUSdeskhttps://sourceforge.net/projects/radiusdesk/2021-B29.11.2021
phpMyPrepaidhttps://sourceforge.net/projects/phpmyprepaid/RC324.07.2016
Dialup Administration Interfacehttps://sourceforge.net/projects/dialup-admin/1.6223.06.2016
administrative panelhttps://sourceforge.net/projects/admin-panel/1.0106.08.2015
freeradius-web-uihttps://github.com/arch-lamp/freeradius-web-ui1.020.01.2015
YFi Hotspot Managerhttps://sourceforge.net/projects/hotcakes/5.1 beta24.11.2014
EasyHotspothttps://sourceforge.net/projects/easyhotspot/0.210.05.2013
phpRADminhttps://sourceforge.net/projects/phpradmin/0.0.1 pre alpha23.04.2013
ezRADIUShttps://sourceforge.net/projects/ezradius/0.2.103.04.2013
JanitorRadius IMBShttps://janitorradius.com/2.1.1 (Commercial)
Radius Managerhttp://www.dmasoftlab.com/4.1.15 (Commercial)

See also

Notes

  1. "Release 3.2.6". 24 August 2024. Retrieved 21 September 2024.
  2. FreeRADIUS wiki
  3. 1 2 3 "2006 User Server Survey". FreeRADIUS. Retrieved 2009-10-07.
  4. "FreeRADIUS: The world's most popular RADIUS Server - About". freeradius.org. Retrieved 2014-11-12.
  5. "FreeRADIUS: The world's most popular RADIUS Server - Downloads". freeradius.org. Retrieved 2015-07-31.
  6. "Using EAP and PEAP with FreeRADIUS | pfSense Documentation". docs.netgate.com. Retrieved 2024-07-03.
  7. "RADIUS Dictionaries | FreeRADIUS Documentation". networkradius.com. Retrieved 2024-07-03.
  8. Lauria, Filippo Maria (2024-04-20), lirantal/daloradius , retrieved 2024-07-04
  9. Fuente, Toni de la (2023-06-08), toniblyx/phpRADmin , retrieved 2024-07-03

Related Research Articles

<span class="mw-page-title-main">PostgreSQL</span> Free and open-source object relational database management system

PostgreSQL also known as Postgres, is a free and open-source relational database management system (RDBMS) emphasizing extensibility and SQL compliance. PostgreSQL features transactions with atomicity, consistency, isolation, durability (ACID) properties, automatically updatable views, materialized views, triggers, foreign keys, and stored procedures. It is supported on all major operating systems, including Windows, Linux, macOS, FreeBSD, and OpenBSD, and handles a range of workloads from single machines to data warehouses, data lakes, or web services with many concurrent users.

<span class="mw-page-title-main">Mac OS X Server</span> Server software for macOS

Mac OS X Server is a series of discontinued Unix-like server operating systems developed by Apple Inc. based on macOS. It provided server functionality and system administration tools, and tools to manage both macOS-based computers and iOS-based devices, network services such as a mail transfer agent, AFP and SMB servers, an LDAP server, and a domain name server, as well as server applications including a Web server, database, and calendar server.

Remote Authentication Dial-In User Service (RADIUS) is a networking protocol that provides centralized authentication, authorization, and accounting (AAA) management for users who connect and use a network service. RADIUS was developed by Livingston Enterprises in 1991 as an access server authentication and accounting protocol. It was later brought into IEEE 802 and IETF standards.

<span class="mw-page-title-main">OpenLDAP</span> Implemenation of an internet protocol

OpenLDAP is a free, open-source implementation of the Lightweight Directory Access Protocol (LDAP) developed by the OpenLDAP Project. It is released under its own BSD-style license called the OpenLDAP Public License.

IEEE 802.1X is an IEEE Standard for port-based network access control (PNAC). It is part of the IEEE 802.1 group of networking protocols. It provides an authentication mechanism to devices wishing to attach to a LAN or WLAN.

<span class="mw-page-title-main">XOOPS</span> Content management system software

XOOPS is a free open-source content management system (CMS), written in PHP. It uses a modular architecture allowing users to customize, update and theme their websites. XOOPS is released under the terms of the GNU General Public License (GPL) and is free to use, modify and redistribute.

The following tables compare general and technical information for a number of relational database management systems. Please see the individual products' articles for further information. Unless otherwise specified in footnotes, comparisons are based on the stable versions without any add-ons, extensions or external programs.

The Protected Extensible Authentication Protocol, also known as Protected EAP or simply PEAP, is a protocol that encapsulates the Extensible Authentication Protocol (EAP) within an encrypted and authenticated Transport Layer Security (TLS) tunnel. The purpose was to correct deficiencies in EAP; EAP assumed a protected communication channel, such as that provided by physical security, so facilities for protection of the EAP conversation were not provided.

Extensible Authentication Protocol (EAP) is an authentication framework frequently used in network and internet connections. It is defined in RFC 3748, which made RFC 2284 obsolete, and is updated by RFC 5247. EAP is an authentication framework for providing the transport and usage of material and parameters generated by EAP methods. There are many methods defined by RFCs, and a number of vendor-specific methods and new proposals exist. EAP is not a wire protocol; instead it only defines the information from the interface and the formats. Each protocol that uses EAP defines a way to encapsulate by the user EAP messages within that protocol's messages.

<span class="mw-page-title-main">LAMP (software bundle)</span> Acronym for a common web hosting solution

A LAMP is one of the most common software stacks for the web's most popular applications. Its generic software stack model has largely interchangeable components.

strongSwan is a multiplatform IPsec implementation. The focus of the project is on authentication mechanisms using X.509 public key certificates and optional storage of private keys and certificates on smartcards through a PKCS#11 interface and on TPM 2.0.

<span class="mw-page-title-main">Catalyst (software)</span> Open-source web application framework

Catalyst is an open-source web application framework written in Perl. It closely follows the model–view–controller (MVC) architecture and supports a number of experimental web patterns. It is written using Moose, a modern object system for Perl. Its design is heavily inspired by frameworks such as Ruby on Rails, Maypole, and Spring.

Internet Authentication Service (IAS) is a component of Windows Server operating systems that provides centralized user authentication, authorization and accounting.

<span class="mw-page-title-main">Silverstripe CMS</span> Content management system

Silverstripe CMS is a free and open source content management system (CMS) and framework for creating and maintaining websites and web applications. It provides an out of the box web-based administration panel that enables users to make modifications to parts of the website, which includes a WYSIWYG website editor. The core of the software is Silverstripe Framework, a PHP Web application framework.

<span class="mw-page-title-main">EGroupware</span>

EGroupware is free open-source groupware software intended for businesses from small to enterprises. Its primary functions allow users to manage contacts, appointments, projects and to-do lists. The project releases its software under the terms of GNU General Public License (GPL).

<span class="mw-page-title-main">Tryton</span> Application platform for resource planning

Tryton is a three-tier high-level general purpose computer application platform on top of which is built an enterprise resource planning (ERP) business solution through a set of Tryton modules. The three-tier architecture consists of the Tryton client, the Tryton server and the database management system.

<span class="mw-page-title-main">ProFTPD</span> Open-source FTP server software

ProFTPD is an FTP server. ProFTPD is Free and open-source software, compatible with Unix-like systems and Microsoft Windows . Along with vsftpd and Pure-FTPd, ProFTPD is among the most popular FTP servers in Unix-like environments today. Compared to those, which focus e.g. on simplicity, speed or security, ProFTPD's primary design goal is to be a highly feature rich FTP server, exposing a large amount of configuration options to the user.

<span class="mw-page-title-main">Dolibarr</span>

Dolibarr ERP CRM is an open source, free software package for companies of any size, foundations or freelancers. It includes different features for enterprise resource planning (ERP) and customer relationship management (CRM) but also other features for different activities.

multiOTP Authentication system

multiOTP is an open source PHP class, a command line tool, and a web interface that can be used to provide an operating-system-independent, strong authentication system. multiOTP is OATH-certified since version 4.1.0 and is developed under the LGPL license. Starting with version 4.3.2.5, multiOTP open source is also available as a virtual appliance—as a standard OVA file, a customized OVA file with open-vm-tools, and also as a virtual machine downloadable file that can run on Microsoft's Hyper-V, a common native hypervisor in Windows computers.