I want to protect the Active Roles web-interface with MFA, how can I do this? I want the second factor to be a Radius-server.

When a user log into Active Roles via the web-interface, I want the user to be prompted for a second factor in addition to the Windows user/password. The second factor should be a Radius-server, is it possible to configure this?