ESET SECURE AUTHENTICATION. SonicWall SSL VPN Integration Guide

Similar documents
ESET SECURE AUTHENTICATION. VMware Horizon View Integration Guide

ESET REMOTE ADMINISTRATOR Event Management Extension Technical Setup and User Guide. Click here to download the latest version of this document

ESET SHARED LOCAL CACHE

ESET SHARED LOCAL CACHE

ESET PARENTAL CONTROL for ANDROID

USER GUIDE. (intended for product version 3.6 and higher) Click here to download the most recent version of this document

ESET REMOTE ADMINISTRATOR PLUG-IN For Kaseya Technical Setup and User Guide. Click here to download the latest version of this document

ESET REMOTE ADMINISTRATOR PLUG-IN For LabTech Technical Setup and User Guide

ESET SECURE AUTHENTICATION. Cisco ASA SSL VPN Integration Guide

ESET SECURE AUTHENTICATION. Cisco ASA Internet Protocol Security (IPSec) VPN Integration Guide

ESET SECURE AUTHENTICATION. Microsoft RRAS with NPS PPTP VPN Integration Guide

ESET SysRescue Live. User Guide. Click here to download the most recent version of this document

for Android User Guide (intended for product version 3.5 and higher) Click here to download the most recent version of this document

ESET REMOTE ADMINISTRATOR 6

ESET Virtualization Security for VMware vshield

ESET SECURE AUTHENTICATION. Juniper SSL VPN Integration Guide

ESET REMOTE ADMINISTRATOR 6

ESET REMOTE ADMINISTRATOR 6

ESET ENDPOINT SECURITY for ANDROID

ESET FILE SECURITY FOR MICROSOFT WINDOWS SERVER. Installation Manual and User Guide. Click here to download the most recent version of this document

ESET REMOTE ADMINISTRATOR 6

ESET SECURE AUTHENTICATION. Product Manual (intended for product version 2.6)

ESET Virtualization Security for VMware NSX

USER GUIDE. (intended for product version 11.0 and higher) Microsoft Windows 10 / 8.1 / 8 / 7 / Vista / Home Server 2011

ESET ENDPOINT ANTIVIRUS 6

USER GUIDE. (intended for product version 11.0 and higher) Microsoft Windows 10 / 8.1 / 8 / 7 / Vista / Home Server 2011

USER GUIDE. (intended for product version 11.0 and higher) Microsoft Windows 10 / 8.1 / 8 / 7 / Vista / Home Server 2011

ESET ENDPOINT SECURITY 6

Archive Manager - SMTP feature

ESET ENDPOINT SECURITY 6

ESET SECURITY. FOR MICROSOFT SHAREPOINT SERVER Installation Manual and User Guide. Click here to display Online help version of this document

Metalogix Expert. Scenario Based Install Jumpstart. March,

Sensitive Content Manager

ESET MAIL SECURITY. FOR MICROSOFT EXCHANGE SERVER Installation Manual and User Guide. Click here to display Online help version of this document

ESET SECURITY FOR MICROSOFT SHAREPOINT SERVER. Installation Manual and User Guide. Click here to download the most recent version of this document

ESET MAIL SECURITY. FOR IBM DOMINO Installation Manual and User Guide. Click here to display Online help version of this document

Content Matrix. Quick Start Guide. February 28,

ESET REMOTE ADMINISTRATOR 6

Two factor authentication for SonicWALL SRA Secure Remote Access

SharePoint Backup. Advanced Installation Guide. March,

Remote Support Security Provider Integration: RADIUS Server

Diagnostic Manager. Advanced Installation Guide. March 23,

ISA 2006 and OWA 2003 Implementation Guide

Security Provider Integration RADIUS Server

Two factor authentication for Cisco ASA SSL VPN

ESET SECURE AUTHENTICATION. Product Manual

Barracuda Networks SSL VPN

Keeping your VPN protected. proven. trusted.

ESET REMOTE ADMINISTRATOR 5

The process of creating a Mobile Connect connection is slightly different depending on which type of SonicWall appliance you are connecting to.

Keeping your VPN protected

VPN Tracker for Mac OS X

Integration Guide. SafeNet Authentication Manager. SAM using RADIUS Protocol with SonicWALL E-Class Secure Remote Access

Diagnostic Manager. User Guide VERSION 4.9. January 16,

ControlPoint. User Guide VERSION 7.5. November 15,

Implementation Guide for protecting Juniper SSL VPN with BlackShield ID

Establishing two-factor authentication with Barracuda SSL VPN and HOTPin authentication server from Celestix Networks

BMC Performance Manager Express for NetApp Filers

Integration Guide. SecureAuth

Ericom PowerTerm WebConnect

NetConnect to GlobalProtect Migration Tech Note PAN-OS 4.1

Checkpoint R80.10 Integration Guide (ASA)

Setting up Certificate Authentication for SonicWall SRA / SMA 100 Series

PST Importer Administration Guide

Integration Guide. SafeNet Authentication Manager. Using SAM as an Identity Provider for SonicWALL Secure Remote Access

How to Configure Mobile VPN for Forcepoint NGFW TECHNICAL DOCUMENT

Configuring the SMA 500v Virtual Appliance

Two factor authentication for Check Point appliances

Two factor authentication for WatchGuard XTM and Firebox IPSec

Partner Information. Integration Overview. Remote Access Integration Architecture

HOW TO SETUP CFS POLICIES WITH LDAP AND SSO TO RESTRICT INTERNET ACCESS ON CFS 3.0

ESET Secure Authentication

Two factor authentication for Cisco ASA IPSec VPN Alternative

BMC Performance Manager Express Monitoring Studio by Sentry Software

Two factor authentication for Remote Desktop Gateway (RD Gateway) with RADIUS

Release Notes Dell SonicWALL SRA Contents Platform Compatibility Licensing on the SRA Appliances and Virtual Appliance

Implementation Guide for protecting. SonicWall Security Appliances. with. BlackShield ID

Integration Guide. SafeNet Authentication Service. Strong Authentication for Juniper Networks SSL VPN

Two factor authentication for F5 BIG-IP APM

VPN Configuration Guide SonicWALL

External Authentication with Checkpoint R77.20 Authenticating Users Using SecurAccess Server by SecurEnvoy

Archive Manager HSM Install and Config Guide

Two factor authentication for SSH using PAM RADIUS module

Dell SonicWALL Aventail Connect Tunnel User s Guide

SSL VPN Web Portal User Guide

4TRESS AAA. Out-of-Band Authentication (SMS) and Juniper Secure Access Integration Handbook. Document Version 2.3 Released May hidglobal.

VAM. Radius 2FA Value-Added Module (VAM) Deployment Guide

Barracuda SSL VPN Integration

DIGIPASS Authentication for NETASQ

VPN Tracker for Mac OS X

Configuring the Cisco VPN 3000 Concentrator with MS RADIUS

Configuration Guide. How to set up the IPSec site-to-site Tunnel between the D-Link DSR Router and the SonicWall Firewall.

Configuring RADIUS Clients

How to Integrate RSA SecurID with the Barracuda Web Application Firewall

Integration Guide. LoginTC

Microsoft ISA 2006 Integration. Microsoft Internet Security and Acceleration Server (ISA) Integration Notes Introduction

RADIUS for Multiple UDP Ports

Two factor authentication for OpenVPN Access Server

External Authentication with Ultra Protect v7.2 SSL VPN Authenticating Users Using SecurAccess Server by SecurEnvoy

Establishing two-factor authentication with Juniper SSL VPN and HOTPin authentication server from Celestix Networks

Transcription:

ESET SECURE AUTHENTICATION SonicWall SSL VPN Integration Guide

ESET SECURE AUTHENTICATION Copyright 2018 by ESET, spol. s r.o. ESET Secure Authenti ca ti on wa s devel oped by ESET, s pol. s r.o. For more i nforma ti on vi s i t www.es et.com. Al l ri ghts res erved. No pa rt of thi s documenta ti on ma y be reproduced, s tored i n a retri eva l s ys tem or tra ns mi tted i n a ny form or by a ny mea ns, el ectroni c, mecha ni ca l, photocopyi ng, recordi ng, s ca nni ng, or otherwi s e wi thout permi s s i on i n wri ti ng from the a uthor. ESET, s pol. s r.o. res erves the ri ght to cha nge a ny of the des cri bed a ppl i ca ti on s oftwa re wi thout pri or noti ce. Cus tomer Ca re Worl dwi de: www.es et.eu/s upport Cus tomer Ca re North Ameri ca : www.es et.com/s upport REV. 3/7/2018

Contents 1. Overview...4 2. Prerequisites...5 3. Integration...6 instructions 4. Troubleshooting...7

1. Overview This document describes how to enable ESET Secure Authentication (ESA) Two-Factor Authentication (2FA) for a SonicWall SRA VPN device. This integration guide utilizes VPN validates AD user name and password VPN type for this particular VPN appliance. If you wish to utilize other VPN type, refer to generic description of VPN types and verify with the vendor if the VPN appliance supports it. 4

2. Prerequisites Configuring the VPN device for 2FA requires: A functional ESA RADIUS server that has your SonicWall SSL VPN device configured as a client, as shown in Figure 1. Note: To prevent locking any existing, non-2fa enabled AD users out of your VPN, we recommend that you allow Active Directory passwords without OTPs during the transitioning phase. It is also recommended that you limit VPN access to a security group (for example VPNusers). A SonicWall SRA SSL-VPN Appliance. The supported appliances are: E-Class SRA Series SRA Series RA Series (although interfaces may differ from this guide, the same concepts will apply) Figure 1 This screenshot shows The RADIUS client settings for your SonicWall VPN device. Note that the check boxes next to Mobile Application, Compound Authentication and Active Directory passwords without OTPs must be selected and the IP Address is the internal address of your SonicWall appliance. 5

3. Integration instructions 1. Add a RADIUS Server: a. Using a web browser, Log into the SonicWall administrative interface. b. Navigate to Portal > Domain on the left. c. Click Add Domain. d. From the Authentication type drop-down menu, select Radius. e. Enter a descriptive name for the authentication domain in the Domain Name field, for example, ESA Radius. f. Under Primary Radius Server, enter the following details: i. Radius Server Address: The IP address of your ESA RADIUS server. ii. Radius server port: 1812 (or custom port if you are overriding). iii. Secret Password: As shown in Figure 1 iv. Radius Timeout: 30 seconds v. Max retries: 2 vi. Portal Layout Name: Select your portal layout. vii.optionally, add the details of a backup ESA RADIUS server. g. Click Add to update the configuration. The domain will be added to the Domain Settings table. 2. Testing the connection: a. Connect to your SSL-VPN using a user account that has been configured to use with Mobile Application 2FA using ESA. When prompted for a password, append the OTP generated by the Mobile Application to your AD password. For example, if the user has an AD password of Esa123 and an OTP of 999111, type in Esa123999111. 6

4. Troubleshooting If you are unable to authenticate via the ESA RADIUS server, ensure that you have performed the following steps: 1. If this is a new SonicWall VPN setup, try logging in with your AD credentials only before adding two-factor authentication. This will make troubleshooting easier. 2. Run a smoke test against your RADIUS server, as described in the Verifying ESA RADIUS Functionality document. 3. Verify that RADIUS authentication is enabled on the SonicWall server: a. Navigate to the VPN window in the administrative interface and select the Configure tab. b. In the Security Association field,select GroupVPN. c. Select the check box next to Require XAUTH/RADIUS. 4. Verify that there is no firewall blocking UDP 1812 between your VPN device and your RADIUS server. 5. If you are still unable to connect, contact ESET technical support. 7

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback