Hi, just wanted to say PrivacyIDEA is really great. As I’m a complete 2FA noob, it took me a while to understand the concepts and get it installed, but now it’s running nicely.
I’m using it to secure an Outlook Web Access installation in conjunction with Kemp Loadmaster.
Kemp Loadmaster presents a username/password screen, then sends a Radius request to PrivacyIdea. Privacyidea checks the username/password in the active directory via LDAP and answers with a radius challenge. Kemp then presents a form to enter the OTP value, sends the value to privacyidea (again via radius) and the user is authenticated.