Establishing two-factor authentication with Barracuda SSL VPN and HOTPin authentication server from Celestix Networks

Similar documents
Establishing two-factor authentication with Juniper SSL VPN and HOTPin authentication server from Celestix Networks

Establishing two-factor authentication with Cisco and HOTPin authentication server from Celestix Networks

Establishing two-factor authentication with FortiGate and HOTPin authentication server from Celestix Networks

Integration Guide. LoginTC

Barracuda Networks SSL VPN

owncloud Android App Manual

Google Authenticator User Guide

RapidIdentity Mobile Guide

3.1 Getting Software and Certificates

HOTPin Software Instructions. Mac Client

Two-Factor Authentication (2FA) Registration Instructions Symantec VIP Access

External Authentication with Checkpoint R77.20 Authenticating Users Using SecurAccess Server by SecurEnvoy

goremote.carolinas.org

Technical Bulletin, November 2014

Barracuda SSL VPN Integration

Remote Access User Guide for Mac OS (Citrix Instructions)

UNT System Campus VPN Guide

owncloud Android App Manual

<Partner Name> <Partner Product> RSA SECURID ACCESS. Pulse Secure Connect Secure 8.3. Standard Agent Client Implementation Guide

Barracuda Networks Android Mobile App and Multi-Factor Authentication

Using the Vita Group Citrix Portal

SSL VPN Web Portal User Guide

<Partner Name> <Partner Product> RSA SECURID ACCESS. VMware Horizon View 7.2 Clients. Standard Agent Client Implementation Guide

Microsoft DirectAccess

How to Integrate RSA SecurID with the Barracuda Web Application Firewall

Contents. Multi-Factor Authentication Overview. Available MFA Factors

Integration Guide. SafeNet Authentication Service (SAS)

Multi-factor Authentication Instructions

Connect to Wireless, certificate install and setup Citrix Receiver

HOSTED EXCHANGE SETTING UP ON SMARTPHONES & TABLETS

Welcome to Adobe. This document will help you with initial account setup and password reset.

MFA (Multi-Factor Authentication) Enrollment Guide

OneLogin Integration User Guide

Getting Started New User. To begin, open the Multi-Factor Authentication Service in your inbox.

Enrolling Devices in Duo

Entrust PartnerLink Login Instructions

Partner Information. Integration Overview. Remote Access Integration Architecture

QUICK NOTE: MULTI-FACTOR AUTHENTICATION

Multi-factor Authentication Instructions

Client VPN OS Configuration. Android

Accessing Skyward Mobile Access App

Barracuda Networks NG Firewall 7.0.0

Android. Configuring Mobile Client user access on the Swivel virtual or hardware appliance

etrac ATOM Android App Setup Guide

Technical Overview: Always On VPN

Cloud UC. Program Downloads I WOULD LIKE TO... DOWNLOADING THE CLIENT SOFTWARE

External Authentication with Ultra Protect v7.2 SSL VPN Authenticating Users Using SecurAccess Server by SecurEnvoy

Outside Access System Manual

Authlogics Forefront TMG and UAG Agent Integration Guide

How to Configure Connection Fallback using Multiple VPN Gateways

Accessing Outlook with the Nationwide Extranet Virtual Machine

Sophos Mobile Control Super administrator guide. Product version: 3.5

Virtua Dual Authentication Entrust IdentityGuard Enrollment

MICROSOFT OFFICE Desktop Applications. Student User Guide Overview

User Guide for Client Remote Access. Version 1.2

Setup Citrix Receiver Standalone App

Cisco Voice Services Self-Care Portal User Guide

pending Checking your just got easier. AGENT NET INFO MOBILE PENDING Android BlackBerry iphone View View View

<Partner Name> RSA SECURID ACCESS. VMware Horizon View Client 6.2. Standard Agent Implementation Guide. <Partner Product>

a) Log in using your credentials. Your User Name will be your address. Enter Password and click <Log On>

Texas Division How to Login and Register for My IT Support and ServiceNow

Table of Contents. VMware AirWatch: Technology Partner Integration

User Guide. NetScaler Gateway Access

Using Citrix to access QFIS and other applications

Table of Contents HOL-1757-MBL-6

Install and upgrade Qlik Sense. Qlik Sense 3.0 Copyright QlikTech International AB. All rights reserved.

Getting Started Accessing Okta All Employees

Integration Guide. SecureAuth

SonicWALL Secure Remote Access Appliances. SonicWALL SRA SSL VPN 5.5 User s Guide

PrinterOn Mobile Printing Instructions for Current Students

Interlink Express Desktop Printing Service Installation Guide

Checkpoint R80.10 Integration Guide (ASA)

ActivIdentity 4TRESS AAA Web Tokens and F5 BIG-IP Access Policy Manager. Integration Handbook

Student Access to Smith s Wood Sports College Remote Applications

Mobility Manager 9.5. Users Guide

Enroll in Two factor Authentication - iphone

Extract from the ARC & RVRC Operational & Administrative Procedures

SurePassID Local Agent Guide SurePassID Authentication Server 2016

Secured Remote Access Authentication Froedtert Connect

SSL VPN Web Portal User Guide

How to Configure Authentication and Access Control (AAA)

Ericom PowerTerm WebConnect

Qualys Cloud Platform (VM, PC) v8.x Release Notes

The University of Toledo Intune End-User Enrollment Guide:

OVERVIEW... 3 WHAT'S NEW... 3 COMPATIBILITY WITH MDM PRODUCTS... 5 CONFIGURE AN MDM MANAGED VPN PROFILE FOR CITRIX SSO... 5

Revised: 08/02/ Click the Start button at bottom left, enter Server Manager in the search box, and select it in the list to open it.

RSA SecurID Implementation

SET UP VPN FOR WINDOWS 10

Orbital provide a secure (SSL) Mailserver to protect your privacy and accounts.

Two-Factor Authentication User FAQ s

Remote Access Installation

VMware View (Horizon)

MFA Pilot Instructions

Two factor authentication for Cisco ASA SSL VPN

Quick Guide for Mynaportal

Device LinkUP + VIN. Service + Desktop LP Guide RDP

Procedure for Connecting to OIL VPN

Document for connecting an ipad/iphone to the University VPN System

CMS-i First Time Activation User Guide

Virtua Dual Authentication Entrust IdentityGuard Enrollment

Transcription:

Establishing two-factor authentication with Barracuda SSL VPN and HOTPin authentication server from Celestix Networks Contact Information www.celestix.com Celestix Networks USA Celestix Networks EMEA Celestix Networks APAC Integration completed by Kimberley Wong Kwan Lun info@celestix.com 3125 Skyway Court, Fremont, California, 94539, USA +1 510 668 0700 30 Queens Road, Reading, RG1 4AU, United Kingdom +44 (0)118 959 6198 1 Changi North Street 1, #02-02, Singapore 498789 +65 6781 0700 klun@celestix.com

This document outlines the steps required to integrate the Barracuda SSL VPN 380 with Celestix HOTPin two-factor authentication. The following steps are detailed within this guide: Adding users Enabling user self provisioning Configuring RADIUS integration in Barracuda Adding Barracuda as a RADIUS client in Celestix HOTPin Testing the login process Steps to Configure Standalone Celestix HOTPin v3.5 Prerequisites This document assumes you have followed the steps in the HOTPin Quick Start Guide, and either installed HOTPin Server v3.5, or configured your HSA Appliance ready for use. If you haven't already done so, please refer to the Quick Start Guide to complete this before proceeding. The Quick Start Guide can be found here: http://www.celestix.com/hotpin-tl.html Step 1: Launch HOTPin Administration Launch the HOTPin Management GUI using the shortcut icon on the desktop. This will load the default web browser. HOTPin ships with a default certificate to provide HTTPS security. The browser will display a certificate security warning, this is normal, choose Continue to this website. Microsoft Windows User Access Control will prompt for a username and password. Enter the administrator credentials. NOTE - depending on the web browser and the default settings, the message might be slightly different. Step 2: Adding users To add users go to HOTPin > Users. Click on New. Complete the user settings for an end user. Token Key: (none) Client Software (default) PIN: User will create PIN For production and full installation we recommend you make use of the Active Directory import feature within HOTPin, and then enable Active Directory Synchronization. This can be achieved easily and simply through the main Management GUI.

Step 3: Configure the user provisioning website From the main Management GUI, go to User Website and tick the Enable user website box. This will allow your users to provision a variety of tokens by accessing a user provisioning portal, but it is important to configure this in advance of giving access. Once enabled, default access to the site is: https://(appliancehostname IP):8098/hotpin/ This site is not enabled by default; it must be turned on by Administrators. At this point, the basic configuration for Celestix HOTPin is complete, and we'll return to the User Provisioning Website later. Configure RADIUS integration in Barracuda Step 4: Add an Authentication Server Go to Access Control > Configuration > RADIUS. Complete the fields: RADIUS Server: The IP address of the HOTPin server. Authentication Port: Set to 1812. Accounting Port: Set to 1813. Shared Secret: Enter HOTPin shared secret. Authentication Method: PAP. Timeout: Set timeout for a RADIUS message. Authentication Retries: The number of retries for a RADIUS message. RADIUS Attributes: The RADIUS attributes used to execute the request. Save changes. Once you have configured your RADIUS server, you need to configure an authentication scheme to use the RADIUS authentication module.

Step 5: Add an Authentication Scheme Go to Access Control > Authentication Schemes. Under the Create Scheme header, provide a Name. Select RADIUS and click the Add > button to move it to Selected Modules box. Add the desired policies from the Available Policies box. Step 6: Enabling RADIUS client on Celestix HOTPin Go to HOTPin > NPS Radius > RADIUS clients > New. Tick Enable this RADIUS client. Enter name and IP address of the Barracuda box. Apply shared secret. This completes the integration process. Next we ll test the login process. Testing the login process Celestix HOTPin supports the following platforms for generating a one-time password. For testing purposes we recommend you use your smartphone, you can search the HOTPin app in your respective app store. Microsoft Windows Android devices MacOS Windows phone devices ios devices (iphones and ipads) Blackberry devices. Step 7: Log on to end user provisioning website. Go to User Website and click on the link for example this URL https://(appliancehostname IP):8098/hotpin/ After you have downloaded the HOTPin app to your Smart Device, log on to the end user provisioning site with your Active Directory credentials.

Step 8: Create Token Key Go to Token Key > QR Code. Enter QR code passphrase: Create a passphrase of at least 6 characters. Confirm passphrase. Code size: Select the image size. Generate QR Code: Click to create the image. Open the app on your smart device. Choose Import from QR Code. Scan the QR Code. Enter the passphrase. Click on Import (IPhone) or OK with Android). You are now able to generate a one time password. This completes the device provisioning process. Further Help For further help, go to http://www.celestix.com

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback