Back to Customer Stories
Cybersecurity
1min read
June 5, 2026

Replacing a Self-Managed RADIUS Server with the JoinNow Platform To Reduce Workload at a Cybersecurity Company

At a Glance
Industry Cybersecurity
Use Case Replacing credential-based Wi-Fi and a self-managed RADIUS server with certificate-based authentication and Cloud RADIUS
Products Cloud RADIUS, Dynamic PKI, JoinNow Platform
Key Result Lowered workload for the IT team after server migration and improved security with certificate-based authentication.
Read the Full Story
Schedule Demo

The Challenge

A cybersecurity SaaS platform provider that protects other organizations from external threats had a gap in its own defenses: credential-based Wi-Fi authentication. If found in a client’s environment, the company would flag it as a security vulnerability. But the company’s own server did not manage certificate-based authentication, meaning that passwords were the default.

The lean IT team managed an on-premises RADIUS server with an Identity and Access Management (IAM) platform. Tasks like manual patching, monitoring, and troubleshooting consumed the team’s limited time.

Plus, the company’s Mobile Device Management (MDM) platform for Mac could not handle the existing Wi-Fi and RADIUS configuration. A cloud-based enrollment and authentication solution was the clear path forward.

The Solution

After a demonstration of how certificate lifecycle automation and Cloud RADIUS would replace both credential-based Wi-Fi and the self-managed RADIUS server, the company selected SecureW2 with confidence. The plan was to deploy the JoinNow platform and integrate certificate-based EAP-TLS and Cloud RADIUS as replacements for an outdated network security protocol and the on-premise server. Cloud RADIUS would check user status against the Okta IAM platform on every authentication event for real-time access control.

The deployment started with several hundred devices at the company’s primary office. They continued to utilize two MDMs: One for Windows and Android devices, and another for Macs. The wireless and wired infrastructure connects to Cloud RADIUS for EAP-TLS authentication, replacing the credential-based model.

Future plans include wired 802.1X with dynamic VLAN assignment to segment traffic by device type and compliance status. VPN certificate authentication and Endpoint Detection and Response (EDR) provider integration are also on the roadmap, tying endpoint compliance to certificate-based access decisions across the full network stack.

The Results

  • Credential-based Wi-Fi eliminated and replaced with a secure certificate-based authentication model.
  • RADIUS server retired = reduced IT workload. Switching from a self-managed server to Cloud RADIUS took manual monitoring,and upkeep off the to-do list for good.
  • Hundreds of devices secured at the primary office, with expansion to additional locations planned.

Learn More About SecureW2

Explore SecureW2's trust model, dive into our platform and product details or read more success stories.

Why SecureW2

Establish continuous trust with Dynamic PKI and Cloud RADIUS. Enforce access based on live identity, device posture, and risk context.

  • Passwordless authentication that can’t be phished
  • Works with your IdP, MDM, and security stack
  • Real-time policy engine for dynamic access control
Learn More
Explore the Platform

Get the essentials on the products that power continuous enforcement.

SecureW2 JoinNow Platform
SecureW2 Dynamic PKI
SecureW2 Cloud RADIUS
MultiOS for Self-Service Onboarding
Integration Hub
Knowledge Base Articles

Explore practical guidance from engineers and admins deploying SecureW2.

  • Setup and configuration tutorials
  • Integration best practices with IdPs and MDMs
  • Troubleshooting guides for PKI and RADIUS
Browse Explainers