====== NIOS RADIUS ======

Infoblox NIOS appliances support authentication via RADIUS servers such as FreeRADIUS, Microsoft, Cisco, and Funk.
You can configure RADIUS authentication using PAP or CHAP protocols.

Admin groups and privileges can be mapped from the RADIUS server to Infoblox Grid Manager.

You can configure multiple RADIUS servers for redundancy and define authentication policies.
 
Limitations with MFA via RADIUS:
  * Infoblox does not natively support prompting for a separate MFA code field during Grid Manager login when using RADIUS authentication.
  * The login interface does not provide an additional input field specifically for MFA tokens (e.g. OTP from an authenticator app or SMS).


[[https://docs.infoblox.com/space/nios90/280275320/Authenticating+Admins+Using+RADIUS|Authenticating Admins Using RADIUS]]

[[https://support.infoblox.com/s/article/116|KB Article - How can Cisco ACS be configured to authenticate Infoblox administrative users?]]

<code>[User Defined Vendor] 
Name=Infoblox
IETF Code=7779
VSA 1=Infoblox-windows-group
VSA 2=Infoblox-variable-1
VSA 3=Infoblox-variable-2
VSA 4=Infoblox-variable-3
VSA 5=Infoblox-variable-4
VSA 6=Infoblox-variable-5
VSA 7=Infoblox-Version
VSA 8=Infoblox-Product-Name
VSA 9=Infoblox-Group-Info

[Infoblox-windows-group]
Type=STRING
Profile=OUT

[Infoblox-variable-1]
Type=STRING
Profile=OUT

[Infoblox-variable-2]
Type=STRING
Profile=OUT

[Infoblox-variable-3]
Type=STRING
Profile=OUT

[Infoblox-variable-4]
Type=STRING
Profile=OUT

[Infoblox-variable-5]
Type=STRING
Profile=OUT

[Infoblox-Version]
Type=STRING
Profile=OUT

[Infoblox-Product-Name]
Type=STRING
Profile=OUT

[Infoblox-Group-Info]
Type=STRING
Profile=OUT</code>