<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008C3jXkSAJOkta Classic EngineMulti-Factor AuthenticationAnswered2024-04-30T09:18:25.000Z2016-02-01T09:23:58.000Z2020-04-16T22:29:15.000Z
ToddA.52213 likes this.

  • j5v7c (j5v7c)

    Hello Adam,

     

    You will want to download and install the Okta Radius Server Agent by logging into your Okta Admin and going to the Security tab and select Downloads

     

    Regards,

     

    Drew Pador

    Okta Technical Support Engineer
    Expand Post

  • ScottL.22511 (Customer)

    Hi,

     

    Is there any update on this topic? It looks like RD gateway server only supports Microsoft NPS server as Radius server. How to configure Okta Radius agent server as the proxy between RD gateway and NPS?

     

    Thanks,

    Scott
    Expand Post

  • Rob Prager (Customer)

    @Drew - this is not the correct solution. You cannot just install the Okta RADIUS client and done. As Scott Li stated, we are looking for a work around on the NPS issue so that we can have the RDP Gatwaway call the Okta RADIUS client/server and then enforce MFA based on a defined Okta policy for remote access through the gateway.

  • Rob Prager (Customer)

    Currently DuoSecurity provides a Duo AUthentication for RD Gateway client. I would like to see Okta provide this too! If you want to play in the MFA space, you need to compete with Duo, and frankly Okta already has all the parts to assemble this solution for its customers. So please do it!

  • usfh4 (usfh4)

    I'll second Rob's thoughts. We are a managed service provider that would love to see this capability from Okta instead of having to enlist Duo (yet another vendor) to provide the functionality!

  • Rob Prager (Customer)

    Very aware of the Liebsoft partnership and was turned to them by our sales rep. My issue is this, Okta needs to provide this! Duo is moving in on Okta space and if they have and soon offer SSO, why use Okta? 

     

    Our team was able to successfully forward RADIUS requests from an RD Gateway to Okta RADIUS agent. However, the agent does not even attempt to accept the request (no entries in Okta Radius log). This seems to be due to the AVP being sent by the RD Gateway highlighted below. Since the agent does not handle the request authentication eventually times out. This was tried many different options to alter the attributes being sent to no avail.  A case was opened with Okta and their only suggestion was to engage their professional services. Fail!

     

    0EM2A000000Xrmp

     

     

    Expand Post

  • j5v7c (j5v7c)

    Hi Everyone,

     

    Does anyone know what attributes should be added to NPS so that NPS proxies username and password to Okta RAdius Agent and not MAC address? 

10 of 13
This question is closed.
Loading
Remote Desktop Gateway - Configuring NPS/Radius to forward requests to Okta