<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z00008VsyeyCABOkta Classic EngineAuthenticationAnswered2024-05-16T20:04:56.000Z2022-12-08T19:08:40.000Z2022-12-14T20:14:24.000Z

ntghn (ntghn) asked a question.

December 8, 2022 at 7:08 PM
Configuring Radius app to work with Radius Server where agent installed

Ok,

So I have:

1>successfully installed and configured the agent on my Radius Server in my VM lab.

2>configured the agent from within Okta (the url provided during the install using the apt install <blah>.deb

 

I wanted to add the Radius app in Okta and that is where I am alittl stuck. I have:

1> cleared the authentication checkbox

2> entered udp port

3> entered secretkey that matches the one configured on my radius server.

 

...here is where I am a little confused:

when asked to provide a username format, I have a few questions:

1> is this format to be taken from the 'Users' file on the radius server where username, text_password and secretkey are defined

--or--

2> is the to be taken from the login name of my okta trial.

 

I am trying to authenticate an Oracle database user via radius where the radius server uses Okta agent to communicate via the Radius app to my trial.

 

So, a little unsure what to input here.

 

btw...the oracle radius based authentication works for the database user at this time. Which leads to yet a few more questions:

 

1> ...in the install and configure, given I did not make any changes to the radius configuration files, does the install and configure do that?

2> if *1 is true, then have these config files changed for to incorporate any configuration for the agent?

3> is the agent startup a part of the boot process now or do I need to do that configuration.

 

  • 3 answers
  • 772 views

  • User16594883467582706479 (Customer Support Online Experience)

    Hi, @ntghn (ntghn)​ 

     

    Thank you for posting on our Community page!

     

    I have done some research and think these articles on Radius apps integration in Okta might help:

     

    The username format needs to match the appropriate attribute in the Okta user profile with the username attribute used by user in the app.

     

    Hope this helps!

     

    Thank you for reaching out to our Community and have a great day!

     

    _____________________________________________________________________________

    Community members help others by clicking Upvote or Select as Best on responses. Try it today.

    _____________________________________________________________________________

     

    Expand Post
    Selected as Best

  • ntghn (ntghn)

    Thanks for the research. Looks like I am getting an attempt to connect when I look @ the system log for the Radius app (see attachment <blah> 14-20-34). Looks like the user (TEST_USER) is not in OKTA as a user. Ok, so I try to add it and use my existing email account and it blows chunks. The good news is that a login from oracle as a test_user is attempting verification ( it is making it to the OKTA trial).

     

    So questions are:

    how do I add a username TEST_USER -- does the sign in need to be changed to something else than 'okta username' ? If so, what do you suggest?

     

    Expand Post
    • Unknown file type
      The file is no longer available.

  • ntghn (ntghn)

    ok so, I must be missing something here. Databases (esp Oracle) do not have usernames that are email type formats. They could be anything. So, the question is since I have a test_user that is getting all the way through the agent to my trial app, it sez: "Authentication of user via Radius

    FAILURE: Login denied. No matching user is assigned to Radius App My oracle RADIUS Application." I cannot add an account other than an email type...what am I missing here. I tried to load with a csv file that had accounts in it and that failed too. Conceptually I am missing something I think. The graphic on Okta's blog entry regarding this (Sept 2016?) summarizes as what is needed (sqlnet.ora changes), a RADIUS okta agent installed and its corresponding app. I have all that so done correctly. the issue is the username and registry of that user in OKTA. A little help please. I am running out of time on my trial to get this done as a POC.

     

    Expand Post
This question is closed.
Loading
Configuring Radius app to work with Radius Server where agent installed