Google IDaaS RADIUS Authentication

By Greg Keller Posted January 16, 2017

WiFi networks and network infrastructure are a critical part of any IT organization. With the move to wireless networks, IT organizations are trying to figure out how to secure access to the network. Historically, wireless networks have been largely open. IT security is now a top issue, so many IT admins are searching for ways to secure their WiFi network.

With that in mind, does Google IDaaS have RADIUS authentication and enable IT admins to secure their WiFi networks? The short answer is no.

So What Does Google IDaaS Do?

In concept, Google’s IDaaS is a first-generation cloud identity platform. It is essentially G Suite Directory, which is a user management system for Google Apps and single sign-on to a select few web applications. That has long been the definition of IDaaS. This may be enough for some organizations, but it isn’t enough if IT organizations want to secure their WiFi networks with RADIUS authentication.

Google’s approach to Identity-as-a-Service neither includes RADIUS authentication nor enables a connection with on-prem wireless networks.

RADIUS Authentication and WiFi Security

Most WiFi networks are secured with a shared SSID and passphrase. This won’t cut it for many IT organizations. Wired networks used to uniquely authenticate each person to the network. Effectively, this was like a True Single Sign-On approach where the domain controller would enable a user to access whatever IT resources were available on the network. This worked great from a security standpoint.

What’s the problem? That approach doesn’t exist with most wireless IT networks.

The good news is that it can. When the wireless network is integrated to the core, authoritative directory service through RADIUS, a user’s credentials are now those that also enable access to the WiFi network. A shared SSID and passphrase do not get the user onto the network. The benefit is a far more secure network with little friction for end users.

There is a real challenge for IT organizations, though. They are required to manage the entire infrastructure, including directory and RADIUS servers. This presents a critical barrier to adoption of this WiFi security approach.

Cloud-Hosted RADIUS with an Integrated Directory

While Google IDaaS doesn’t provide RADIUS authentication capabilities, a modern IDaaS platform called Directory-as-a-Service® does. As a cloud identity management platform, Directory-as-a-Service is securely managing and connecting user identities to necessary IT resources, including systems, applications, and networks. A cloud-hosted RADIUS platform along with an integrated directory service is included in these capabilities. IT admins don’t need to manage RADIUS or directory service. IT organizations simply add their users to the directory platform and point their wireless access points to the RADIUS solution in the cloud. There isn’t any configuration or adjustments to the end users’ devices, so it is easy to integrate.

Try RADIUS-as-a-Service via JumpCloud®

If you would like to learn more about Google IDaaS RADIUS authentication, drop us a note. Alternatively, explore our RADIUS-as-a-Service platform with an integrated directory. As a modern IDaaS solution, you will get a number of core identity management capabilities, all from the cloud. Please try our virtual identity provider yourself – just sign up for a free account. Your first 10 users are free forever.

Greg Keller

Greg is JumpCloud's Chief Product Officer, overseeing the product management team, product vision and go-to-market execution for the company's Directory-as-a-Service offering. The SaaS-based platform re-imagines Active Directory and LDAP for the cloud era, securely connecting and managing employees, their devices and IT applications.

Recent Posts