Managed to monkey-patch the radiustar #ruby gem enough to get basic auth working but no, this is not the #RADIUS ilbrary you are looking for!

Yet to find an actively maintained, modern radius gem.

https://codingkata.tardate.com/infrastructure/radius/radiustar_client/

Ocserv 2FA/OTP (RADIUS + FreeIPA)

В данном руководстве приведена инструкция по внедрению двухфакторной аутентификации (2FA/TOTP) для VPN-доступа на базе ocserv (OpenConnect Server) в связке с FreeRADIUS и FreeIPA.

https://habr.com/ru/articles/1025578/

#freeipa #ocserv #freeradius #radius #docker

Прошивка и настройка D-link DES3200-26 с привязкой к RADIUS NPS

В данной статье опишу реализацию доменной авторизации на коммутаторах D-link, с разграничением прав для техника (чтение) и (чтение+запись) для системного администратора. Этим мы решаем задачу по смене пароля каждые 90 дней, согласно моей групповой политике в домене. А так же при увольнения сотрудника у вас пропадёт надобность менять пароли на коммутаторах, заблокируем в домене этим мы исключаем компрометацию логина и пароля на наше сетевое устройство.

https://habr.com/ru/companies/timeweb/articles/1021646/

#dlink #nps #radius #radius_nps

Drop in replaced one of our FLRSs for eduroam today 😅

Great success with minimum downtime thanks to thorough preparatory work. #eduroam #radius

I first came across Project Copacetic (#Copa for short) in @markrussinovich keynotes about Azure where they use it to patch vulns in millions of container images a month, internally and for Azure users and I thought 'doesn't everyone with container images need to do this'?

Turns out, that's exactly what the Copa team (who also worked on tools like #Radius and #Dapr) thought, and when they open sourced it, other tools like Kubescape started to use it; Anubhav Gupta told me why it's so useful for platform teams. @descopeinc built a whole self-patching registry on top of it. Copa isn't perfect but Vadim Bauer told me it might be a useful plugin for updating images in Harbor the way Microsoft does in ACR with Copa and Dalec.

Microsoft still uses it at massive scale: "every build that goes through our engineering system for any team, runs through Copa,” @sozercan told me.

Copa doesn't create patches but as soon as there is a patch for an issue Trivy (or other scanners) find, it can apply it as a patch layer so you don't have to wait for an official image or even an image rebuild; you can use it with GitHub Actions and Dependabot; it does OS patches, distroless and now app runtime patches for Node.js, Python, .NET and soon Go patching too.

One of the frustrating things with open source is you don't always know who's using it: Bank of America and thousands of other companies are using Copa, almost everyone who's heard of it loves is but it still feels like a bit of a hidden secret in the #CNCF sandbox; maybe this will help!

Extra thanks to everyone who talked to me for this piece, since it was either in the run up to or actually at #Kubecon when everyone is extra busy! Also, hit me up if you're on Mastodon and I haven't tagged you here because @ mentions are being weird for me today...

https://www.thestack.technology/copacetic-copa-patch-containers-automatic-scale/

So it turns out #Microsoft have never "fixed" the stupidity in #NPS where, when you get a new #certificate into the local computer store, you have to Open the PEAP settings screen and click ok (not actually change anything) to get it to pick up the new cert.

It's been 20 years…

#fail #radius #eduroam

📶 NEW: Windows RADIUS + UniFi Controller Setup!

802.1X wireless authentication with Windows Server 2022/2025 NPS. Secure your WiFi with AD authentication.

📖 Read: https://devopstales.github.io/windows/windows-server-radius/?utm_source=twitter&utm_medium=social

#Windows #RADIUS #UniFi #Networking #Security