GNU Radius is a RADIUS server and an accompanying set of monitoring utilities. It features MySQL and PostgreSQL interfaces for authentication and/or logging (the ODBC interface allows you to use almost any existing DBMS for that purpose), the ability to rewrite RADIUS requests from various NASs to normalize them to a more understandable format, and the ability to completely customize the behavior of RADIUS authentication and accounting based on NAS and user attributes.
SMRadius is a high performance pre-forked RADIUS AAA server. It features a highly configurable backend engine supporting flexible data specifications. Its primary goal is to provide an extremely flexible authentication platform which may serve a large number of industries, including ISPs and WiSPs.
LinOTP is a solution for strong two-factor authentication with one time passwords. It features a modular architecture into which UserIdResolver, authentication, and OTP calculation modules can be plugged. It includes UserIdResolver modules for LDAP/AD, SQL, and flat file user databases, and authentication modules for PAM and RADIUS. New modules can be developed easily. Supported tokens are HMAC-OTP/HOTP (RFC 4226/ OATH compliant), Aladdin eToken PASS, eToken NG-OTP, Safeword Alpine, Yubikey, Google Authenticator, motp, SMS OTP/Mobile TAN, email token, and a Simple Pass token for users without token hardware. TOTP is supported, along with a new algorithm for daily passwords for applications not supporting RADIUS. OCRA tokens are supported to allow transaction signing in banking environments. CLI, Web, and GTK+ GUI clients are available for management. LinOTP features multi-client capability, redundancy, and a self-service portal. It has been used with PAM for local and SSH logins, Apache, VPN, and Windows Terminal Server, and is OATH certified.
File2Radius is a daemonized script that tails a CDR accounting log file and generates RADIUS accounting records on the wire from it in real time. It was designed to be used with the Broadsoft soft switch, but could be adapted for other sources of CDR data. It supports sending to a primary and backup RADIUS server and automatically follows log files as they are rotated. The script assumes that you are performing duplicate checking on the RADIUS server backend. It supports the loading of bulk archive data with 'fake' source IPs.