RADIUS and IP address of user
Hello,
I'm trying to use a RADIUS server for MFA.
I've found that the real IP address of the user that is trying to login is not passed in the RADIUS request.
This is not fine because we cannot identify the source network of the user and then apply the right MFA policy. Moreover in our log the request will be recorded as arriving from the Devolutions server instead from the user's ISP.
Is there a way to add the source IP of the user in RADIUS request?
Usually in RADIUS a special attribute ID is used in request to pass the real-ip of the user. For example:
Cisco, Juniper, Citrix and F5 use "31 Calling Station ID" (that is also the RADIUS standard for this purpose). Palo Alto Networks use "26 PAN Vendor ID".
Do you think is something that you can implement in next releases?
All Comments (1)
Hello,
Thank you for your request.
A ticket has been opened to our engineering department regarding your case.
When the engineering department will improve the Radius behaviour, a comment will be added to this thread and you will be notified.
As our next version should be released in the following weeks, this version will not include this improvement. We recommend to subscribe to the following topic to be notified for the release notes of a new DVLS version.
General availability release https://forum.devolutions.net/forums/105/general-availability-releases
Long Term Support release https://forum.devolutions.net/forums/106/long-term-support-releases
Best regards,
Érica Poirier