Principles of RADIUSdesk Realms

Realms are a way to group users in RADIUS. Since RADIUSdesk are simply a front-end to FreeRADIUS, realms are also supported in RADIUSdesk.

• Usually in RADIUS deployments one can discover the realm a user belongs to by looking at the username.
• Suppose we have alice@my_realm.com. We can assume that alice belongs to the my_realm.com realm.
• RADIUSdesk allows you to follow this convention but also offers the flexibility to allow you to specify a user's email address as their username.
• This will allow you to register Alice with her gmail email address as a username.
• We can now have user alice.bodine@gmail.com that is part of the my_realm.com realm.
• In RADIUSdesk ALL Vouchers and Permanent Users belongs to one realm.
• BYOD Devices automatically will belong to the realm of the Permanent User who owns the device.

• A cloud can contain zero or more realms.
• The cloud thus becomes the owner of the realm.
• If you thus want an admin to manage users of a realm, make sure that they have admin rights to the cloud which under the realm is created.

• When you add a RADIUS Client there is the option to only allow users from specified realm (can be multiple realms) network access.

• You may have noticed these two buttons in the toolbar of the applet managing Realms.
• This is part of a new feature which is under development and due for release soon.