Free EditionADSelfService Plus supports the following types of authenticators for VPN MFA:
These authenticators are automatically applicable for all the endpoints providing RADIUS authentication.
Challenge-based authenticators are applicable only when:
While ADSelfService Plus provides MFA enablement for all RADIUS-based VPN providers, not all authenticators supported by the product are available in these providers. This article provides a list of popular VPN providers and other RADIUS-based clients and the authenticators supported by them.
| VPN and other RADIUS clients | Supports one-way authenticators provided in ADSelfService Plus? | Supports challenge-based authenticators provided in ADSelfService Plus? |
| Fortinet VPN | Yes | Yes |
| OpenVPN Access Server (AS) | Yes | Yes |
| Cisco ASA AnyConnect VPN | Yes | Yes |
| NetMotion Mobility VPN | Yes | No |
| Microsoft RDGateway | Yes | No |
| Microsoft Routing and Remote Access Service (RRAS) | Yes | No |
| Palo Alto VPN (GlobalProtect client) | Yes | Yes |
| WatchGuard VPN | Yes | No |
| Sonic Wall VPN | Yes | Yes |
| Pulse Secure VPN | Yes | Yes |
| Juniper | Yes | Yes |
| Checkpoint | Yes | Yes |
| VMWare Horizon | Yes | Yes |
| ForcePoint | Yes | Yes |
| Cisco Meraki | Yes | No |
| Citrix/NetScaler Gateway | Yes | No |
Note: Status of authenticator availability may change in the future.
Disclaimer : While the VPN providers listed above have been officially tested and confirmed to support the authenticators mentioned, other VPN providers and endpoints employing RADIUS protocol for authentication can support these authenticators as well. Please contact the support team ( support@adselfserviceplus.com ) if you have trouble assessing whether the VPN provider used in your organization supports these authenticators.
Need further assistance? Fill this form, and we'll contact you rightaway.
Allow Active Directory users to self-service their password resets and account unlock tasks, freeing them from lengthy help desk calls.
Get seamless one-click access to 100+ cloud applications. With enterprise single sign-on, users can access all their cloud applications using their Active Directory credentials.
Intimate Active Directory users of their impending password and account expiry via email and SMS notifications.
Synchronize Windows Active Directory user passwords and account changes across multiple systems automatically, including Microsoft 365, Google Workspace, IBM iSeries, and more.
Strong passwords resist various hacking threats. Enforce Active Directory users to adhere to compliant passwords by displaying password complexity requirements.
Enable Active Directory users to update their latest information themselves. Quick search features help admins scout for information using search keys like contact numbers.
