cloudradius.com

What It Is

Cloud RADIUS is a managed RADIUS service from SecureW2. Its core purpose is to upgrade access authentication for Wi‑Fi, wired networks, and VPNs from password-based methods to certificate-based EAP‑TLS. The main content highlights integrations with IdPs, MDM platforms, and security stacks to enable passwordless network access, centralized policies and reporting, along with a 99.999% uptime SLA.

Core Capabilities and Protection

Its security model centers on binding certificates to devices, keeping private keys on the device, and using mutual TLS to verify both client and server. This helps reduce risks from phishing, Evil Twin attacks, man-in-the-middle attacks, offline cracking, and leaked shared passwords. It supports dynamic VLAN/role assignment based on user groups, devices, and conditions, and is suitable for 802.1X, VPN, BYOD, guest access, and MSP multi-tenant scenarios. For IoT or legacy devices, the content also mentions MAC-Based Authentication as a way to maintain segmented access.

Deployment, Management, and Integrations

Cloud RADIUS is deployed as a cloud-hosted RADIUS service: you configure the RADIUS IP, port, and Shared Secret on APs, switches, or VPN gateways, then issue certificates through SecureW2 PKI, network Profiles, an Onboarding SSID, or a self-service portal. Integrations include Azure/Entra ID, Okta, and Google Workspace, with SAML/OAuth used for enrollment and runtime authentication. On the network equipment side, supported examples include Cisco Meraki, Aruba IAP, Extreme, Ubiquiti UniFi, Cambium, and Cisco Wireless. For MDM, the content mentions Intune, Jamf, and Kandji. Management features include centralized policies and reporting, though the content does not specify concrete alerting channels.

Pricing, Pros, and Cons

The pricing page only shows “Check our prices,” “Schedule Demo,” and “Free Demo,” without listing plans or unit prices. The main advantages are reduced operational overhead compared with self-hosted RADIUS, support for high availability, certificate lifecycle management, and cloud identity integrations, making it suitable for reducing password resets and Wi‑Fi support tickets. The drawbacks are that PKI, 802.1X, MDM, and IdP coordination still require professional configuration; compliance certifications, detailed SLA terms, pricing, and localized support are not disclosed.

Who It’s For and Access from China

It is best suited to mid-sized businesses, schools, branch networks, and MSPs that already use cloud identity and MDM and want to replace PSK/PEAP password authentication. There is no information in the content about access from China, payment methods, or Chinese-language support, so these remain unknown. If domestic access in China or stronger compliance requirements are important, it is worth evaluating self-hosted FreeRADIUS/Windows NPS or local NAC, 802.1X, and certificate management solutions in parallel.