As Managed Service Providers (MSPs) continue to step their game up and create new and interesting offerings for their customers, one area of focus is on network security – specifically locking down the WiFi network. In order to implement a secure method of shielding the WiFi connection, FreeRADIUS is often the tool that MSPs look to utilize. Unfortunately, “out-of-the-box” FreeRADIUS is not an MSP-friendly solution. That’s because FreeRADIUS requires a vast amount of technical know how, and more importantly, time to get set up correctly. Additionally, because MSPs generally have many clients, setting up a FreeRADIUS server for each one is far from ideal as is hacking FreeRADIUS to work in a multi-tenant environment.
We can begin to understand why MSPs desire to implement RADIUS when we see its benefits. With a properly configured RADIUS instance, organizations won’t rely on a shared SSID and password combination for security. Instead of a shared set of credentials, users input their own unique credentials to access their wired or WiFi network for enhanced security.
RADIUS Doesn’t Have to Mean Endless Work
One of the reasons a FreeRADIUS server is a lot of work stems from the fact that it has to connect to so many different aspects of the networking infrastructure. MSPs who implement FreeRADIUS have to incorporate it with a directory service, switches, routers, wireless access points (WAPs), and finally they then need to double check to ensure that each individual endpoint has the same version of the protocol. Because MSPs generally have multiple clients, this work grows exponentially and is often done on-prem, yet another drawback for efficiency-minded MSPs.
The good news here is that there is a cloud RADIUS for MSPs solution that they can leverage. Called JumpCloud® Directory-as-a-Service®(DaaS), this cloud identity management platform includes RADIUS-as-a-Service capabilities that can be centrally managed by MSPs for their various clients. As a cloud service, RADIUS-as-a-Service tightly integrates with JumpCloud’s virtual directory service, WAPs, and systems (Windows®, Mac®, and Linux®) without any hardware to power, maintain, secure, or house on-prem.