RD Gateway RADIUS protocol type and integration with custom MFA Server

Question

Hi all,

I have a task to establish multi factor authentication for RD Gateway with custom Authentication Server (not Aazure) via RADIUS protocol. I've managed to make RD Gateway sends requests to this server based on bunch of instructions here, but I have an issue with RADIUS protocol. Looks like Authentication Server can't recognize, which sub-protocol were used.

Could you please clarify which exactly protocol is using by default (PAP, CHAP etc.) and where can I config this protocol with with RADIUS attributes to be sent?

Thanks a lot in advance!

BR,
Anatoliy

Answer 1

Hi,
Thanks for your update but I failed to find any official document indicating the specific Radius protocol used with RD Gateway.

However with internal searching, there is one statement mentioning:
MFA server only support PAP and MSCHAPv2 when acting as a Radius server.

So in this case, I would suggest you contact Microsoft Customer Support, where you would get a more satisfying explanation and solution with further investigation.

You may find phone number for your region accordingly from the link below:
Global Customer Service phone numbers
https://support.microsoft.com/en-us/gp/customer-service-phone-numbers/en-au?wa=wsignin1.0

Thanks,
Jenny

Answer 2

Hi,
1.Per my searching, there is no official documentation stating the protocol used by default for Radius when integrated with RD Gateway.

2.Kindly confirm the exact error message when you failed to use RD Gateway with MFA.

3.Not sure which guidance you've followed to deploy the configuration, but you could check the link below:
Implementing an On Premise Azure MFA Server with RD Gateway
https://www.rdsgurus.com/step-by-step-using-windows-server-2012-r2-rd-gateway-with-azure-multifactor-authentication/

Please note: Information posted in the given link is hosted by a third party. Microsoft does not guarantee the accuracy and effectiveness of information.

Thanks,
Jenny