Configure RADIUS for the Secret Server Instance

Enable RADIUS Two-Factor Authentication in Delinea Secret Server 10.6 version

Secret Server allows the use of RADIUS two-factor authentication on top of the normal authentication process for additional security needs.

Sign in to an account with Administer Configuration and Administer RADIUS permissions.
Navigate to Administration menu | Configuration | Login.
Enable Secret Server with your RADIUS server information by going into edit mode.
- RADIUS Server IP: IP address to your RADIUS Server.
- RADIUS Client Port: default 1812.
Note: If your RADIUS server runs on the same machine as your Secret Server, client and server ports must be different.
- RADIUS Server Port(default 1812 for RSA and 1812 for AuthAnvil).
- RADIUS Shared Secret must match the chosen RADIUS shared secret on your RADIUS Server. (Shared Secret is a RADIUS term and not related to any Secret Server secret.)
- RADIUS Login explanation(custom message or instruction). Defaults to Please enter your RADIUS passcode.
Click Save after the entries are confirmed.

Click the Test RADIUS Login button.

Note: After enabling RADIUS in your Secret Server instance, you must also enable RADIUS two-factor authentication for each user. You can enable it on a per-user basis.
Sign in to an account with Administer Configuration and Administer RADIUS permissions.
Navigate to Administration | Users | Username of user to enable.
Click the Edit button and check the RADIUS Two Factor Authentication checkbox.
Enter the RADIUS username in the text field.

Note: Secret Server defaults this value to its username. If you wish to use this default name, it must match the username on the RADIUS server.
Review the settings and click Save.
Repeat 3-5 for each user.

You should be successfully logged into Secret Server using two-factor authentication through RADIUS.