.png?width=100&auto=webp&quality=80&disable=upscale "Picture of John Savill")
.png?width=400&auto=webp&quality=80&disable=upscale "John Savill")
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
Find out if RADIUS works with RODC
Find out how RODCs can be used by RADIUS.
John Savill
May 1, 2016
1 Min Read
Q. Can the Microsoft RADIUS work with a Read-Only Domain Controller?
A. RADIUS when implemented with Network Policy Server (NPS) can leverage Active Directory when using authentication such as PEAP MsCHAPv2. A Read-Only Domain Controller (RODC) stores a read-only copy of the Active Directory database that additionally can be configured to only cache the passwords of certain accounts, typically those users at the location of the RODC. NPS works fine with RODC however there are some considerations:
If the RODC cannot contact a regular RWDC then only credentials cached on the RODC can be authenticated while other authentications will fail
Provided the RODC can contact a regular RWDC then if a new user authentication is required the RWDC will be contacted then the credential cached for future authentications
About the Author
You May Also Like
.jpg?width=700&auto=webp&quality=80&disable=upscale)
