You can configure your Firebox so that Mobile VPN users with Active Directory accounts can authenticate through your RADIUS server. RADIUS authentication with Active Directory is supported for all Mobile VPN methods.
To set up this authentication method:
- Configure your RADIUS server to get user credentials from your Active Directory database
- Configure your Active Directory and RADIUS servers to communicate with your Firebox
- Configure the Mobile VPN settings on your Firebox to enable RADIUS authentication
NPS is the Microsoft implementation of RADIUS. To configure an NPS server, see Configure Windows Server 2016 or 2012 R2 to authenticate mobile VPN users with RADIUS and Active Directory in the WatchGuard Knowledge Base.
To configure your Active Directory server, see the documentation for your Microsoft operating system.
Control User Access Permissions Over Mobile VPN with SSL in the WatchGuard Knowledge Base