Skip to main content

About 98% of our customers use the RADIUS protocol to enable two-factor authentication for networking equipment, VPNs. etc.

After you have downloaded the WiKID two-factor authentication server, installed it and configured it, you will want to add Network Clients. This can either be your RADIUS server if you are using freeradius or NPS (which we recommend) or a Cisco ASA or any VPN if you want them talking directly. On the WiKIDAdmin click on the Network Clients tab.

Create a radius network client for 2FA

Click on Add a New Network Client.

Network Client info

Give it a useful name, enter the IP address of the RADIUS server or the Cisco ASA depending on your setup. Select RADIUS as the protocol and select the WiKID domain to use. Click Add.

radius shared secret

Enter the Shared secret. Remember this must match what is entered in the RADIUS server, VPN etc or WiKID will not be able to decode the RADIUS packets.

NB: PAP, CHAP, MSCHAP, MSCHAP2. and EAP with MD5 are automatically detected.  If you are using LEAP, change the dropdown to LEAP.


Click Add NC.

On the WiKID terminal run 'wikidctl restart'. This updates the RADIUS cache and if you are using our ISO virtual appliance opens up the firewall for the IP address of the network client. If you are using the packages, please open port 1812 UDP for the correct IP address.


Copyright © WiKID Systems, Inc. 2024 | Two-factor Authentication