Establishing two-factor authentication with FortiGate and HOTPin authentication server from Celestix Networks

Similar documents
Establishing two-factor authentication with Barracuda SSL VPN and HOTPin authentication server from Celestix Networks

Establishing two-factor authentication with Juniper SSL VPN and HOTPin authentication server from Celestix Networks

Establishing two-factor authentication with Cisco and HOTPin authentication server from Celestix Networks

Campuses that access the SFS nvision Windows-based client need to allow outbound traffic to:

CaseWare Working Papers. Data Store user guide

VMware AirWatch Certificate Authentication for Cisco IPSec VPN

Managing Your Access To The Open Banking Directory How To Guide

WorldShip PRE-INSTALLATION INSTRUCTIONS: INSTALLATION INSTRUCTIONS: Window (if available) Install on a Single or Workgroup Workstation

NiceLabel LMS. Installation Guide for Single Server Deployment. Rev-1702 NiceLabel

istartsmart 3.5 Upgrade - Installation Instructions

DIVAR IP 3000 Field Installation Guide

Dolby Conference Phone Support Frequently Asked Questions

Wave IP 4.5. CRMLink Desktop User Guide

CONFIGURING UUM . Android. You will need the following information to set up UUM

Enterprise Installation

Panorama Offsite Access Prepared for: WRHA Mass Immunization Events

SmartPass User Guide Page 1 of 50

Upgrade Guide. Medtech Evolution Specialist. Version 1.11 Build (October 2018)

Upgrade Guide. Medtech Evolution General Practice. Version 1.9 Build (March 2018)

BMC Remedyforce Integration with Remote Support

Configure Data Source for Automatic Import from CMDB

Towne Information Systems, Inc. Inter-Office Correspondence

1 Getting and Extracting the Upgrader

1 Getting and Extracting the Upgrader

1 Getting and Extracting the Upgrader

Exercise 1: Deploying Windows Server 2012

Please contact technical support if you have questions about the directory that your organization uses for user management.

File Share Navigator Online

TechSmith Relay 5.1.5

Secure File Transfer Protocol (SFTP) Interface for Data Intake User Guide

Student Quick Reference Guide

Bulk Deployment Utility Guide Cisco Wireless IP Phone 8821 & 8821-EX

Repstor custodian. On Premise Pre-Requisites. Document Version 1.1 January 2017

ABELDent Platform Setup Conventions

BMC Remedyforce Integration with Bomgar Remote Support

DC Remote Control Installation and Configuration Guide. Version 1.2

Client Configurations

Launching Xacta 360 Marketplace AMI Guide June 2017

AvePoint Perimeter Pro 1.9

ABELMed Platform Setup Conventions

USER GUIDE. Thanks for purchasing the igate! You ll need to follow these five Configuration Steps to get your igate up and running:

Virtual Office

SMART Room System for Microsoft Lync. Software configuration guide

REFWORKS: STEP-BY-STEP HURST LIBRARY NORTHWEST UNIVERSITY

Release Type: Firmware Software Hardware New Product. VIA Collage Yes N/A VIA Collage Bundle Yes N/A

Cloud Storage Migration Suite 1.1.0

PowerTeacher Classroom Management Tool Quick Reference Card

Stoneware Inc. Citrix NFuse Configuration. Stoneware, Inc. Configuration Sheet Date: January 2005

Xerox Phaser 3635 MFP User Instructions

AvePoint Timeline Enterprise for Microsoft Dynamics CRM

Avigilon Control Center Server User Guide. Version 6.4

Online Banking for Business USER GUIDE

FollowMe. FollowMe. Q-Server Quick Integration Guide. Revision: 5.4 Date: 11 th June Page 1 of 26

Kaltura Video Extension for SharePoint 2013 Deployment Guide for Microsoft Office 365. Version: 1.0

Welcome to Remote Access Services (RAS) Virtual Desktop vs Extended Network. General

STIDistrict AL Rollover Procedures

Quick Installation Guide

Release Type: Firmware Software Hardware New Product

Telkom VPN-Lite router setup User Manual Billion 810VGTX

Date: October User guide. Integration through ONVIF driver. Partner Self-test. Prepared By: Devices & Integrations Team, Milestone Systems

Exosoft Backup Manager

Release Notes. Dell SonicWALL Security BETA

Telkom VPN-Lite router setup User Manual Billion 800VGT

SupportDesk Technical Setup Guide

Dynamic Storage (ECS)

AvePoint Meetings Pro 4.3 for SharePoint On-Premises. Installation and Configuration Guide

Verifone MX850 All-In-One Device: Before connecting the MX850 to your PC, the MX850 Driver CD will need to be installed.

AT&T Corporate Voice Mail Unified Messaging (CVM-UM) Quick Start

ClassFlow Administrator User Guide

Investor Services Online Quick Reference Guide FTP Delivery

UC Mobile Admin Guide. Release Android, ios. Document Version Maryland Way, Suite 300 Brentwood, TN Tel

Re-Flashing Your CDM-760 Advanced High-Speed Trunking Modem

Mail: Entertainment Partners, Attn: W-2 Group, P.O Box 7836, Burbank, CA 91510

UPGRADING TO DISCOVERY 2005

Creating an Online Account

Getting Started with the SDAccel Environment on Nimbix Cloud

UDS Enterprise Configuring UDS Enterprise in HA

ATKey.card User Guide REVISION: 1.9

Enrolling onto the Open Banking Directory How To Guide

Quick Guide on implementing SQL Manage for SAP Business One

Quick Start Guide. Basic Concepts. DemoPad Designer - Quick Start Guide

Reviewer Information Sheet for Committee Members

Information Technology Services MCG New Student Orientation Fall 2016

LiveEngage and Microsoft Dynamics Integration Guide Document Version: 1.0 September 2017

August 22, 2006 IPRO Tech Client Services Tip of the Day. Concordance and IPRO Camera Button / Backwards DB Link Setup

Firmware Upgrade Wizard v A Technical Guide

XenDesktop GoToMyDesktop

Announcing Veco AuditMate from Eurolink Technology Ltd

CCNA Security v2.0 Chapter 10 Exam Answers

Imagine for MSDNAA Student SetUp Instructions

Delivering StreetLinks Orders WinTotal. Total... 2 Aurora... 6 Athena... 9

ClubRunner. Volunteers Module Guide

User Guide. Document Version: 1.0. Solution Version:

Password Reset for Remote Users

App Orchestration 2.6

AvePoint Online Services 2

Enabling Your Personal Web Page on the SacLink

To start your custom application development, perform the steps below.

I. Introduction: About Firmware Files, Naming, Versions, and Formats

Proficy* SmartSignal 6.1 Installation Guide

Transcription:

Establishing tw-factr authenticatin with FrtiGate and HOTPin authenticatin server frm Celestix Netwrks Cntact Infrmatin www.celestix.cm Celestix Netwrks USA Celestix Netwrks EMEA Celestix Netwrks APAC Integratin cmpleted by Kimberley Wng Kwan Lun inf@celestix.cm 3125 Skyway Curt, Fremnt, Califrnia, 94539, USA +1 510 668 0700 30 Queens Rad, Reading, RG1 4AU, United Kingdm +44 (0)118 959 6198 1 Changi Nrth Street 1, #02-02, Singapre 498789 +65 6781 0700 klun@celestix.cm

This dcument utlines the steps required t integrate the FrtiGate111C with Celestix HOTPin twfactr authenticatin. The fllwing steps are detailed within this guide: Adding users Enabling user self prvisining Cnfiguring RADIUS integratin in FrtiGate Adding FrtiGate as a RADIUS client in Celestix HOTPin Testing the lgin prcess Steps t Cnfigure Standalne Celestix HOTPin v3.5 Prerequisites This dcument assumes yu have fllwed the steps in the HOTPin Quick Start Guide, and either installed HOTPin Server v3.5, r cnfigured yur HSA Appliance ready fr use. If yu haven't already dne s, please refer t the Quick Start Guide t cmplete this befre prceeding. The Quick Start Guide can be fund here: http://www.celestix.cm/htpin-tl.html Step 1: Launch HOTPin Administratin Launch the HOTPin Management GUI using the shrtcut icn n the desktp. This will lad the default web brwser. HOTPin ships with a default certificate t prvide HTTPS security. The brwser will display a certificate security warning, this is nrmal, chse Cntinue t this website. Micrsft Windws User Access Cntrl will prmpt fr a username and passwrd. Enter the administratr credentials. NOTE - depending n the web brwser and the default settings, the message might be slightly different. Step 2: Adding users T add users g t HOTPin > Users. Click n New. Cmplete the user settings fr an end user. Tken Key: (nne) Client Sftware (default) PIN: User will create PIN Fr prductin and full installatin we recmmend yu make use f the Active Directry imprt feature within HOTPin, and then enable Active Directry Synchrnizatin. This can be achieved easily and simply thrugh the main Management GUI.

Step 3: Cnfigure the user prvisining website Frm the main Management GUI, g t User Website and tick the Enable user website bx. This will allw yur users t prvisin a variety f tkens by accessing a user prvisining prtal, but it is imprtant t cnfigure this in advance f giving access. Once enabled, default access t the site is: https://(appliancehstname IP):8098/htpin/ This site is nt enabled by default; it must be turned n by Administratrs. At this pint, the basic cnfiguratin fr Celestix HOTPin is cmplete, and we'll return t the User Prvisining Website later. Cnfigure RADIUS integratin in FrtiGate Step 4: Add Authenticatin Server G t User > Remte > RADIUS. Select Create New, yu are autmatically redirected t the New RADIUS Server page. Cmplete the fields: Name: Enter the name f the HOTPin appliance. Type: Select either Query r Dynamic Start. Primary Server Name/IP: Enter IP address f the HOTPin appliance. Secndary Server Name/IP: Enter the IP address f secndary RADIUS server, if yu have ne. Authenticatin Scheme: Select Use Default Authenticatin Scheme t authenticate with the default methd. Select Specify Authenticatin t verride the default authenticatin methd and chse a prtcl frm the drp dwn bx. NAS IP/Called Statin ID: Optinally enter the NAS IP address. Include in every User Grup: Select the enable check bx. Click OK.

Step 5: Test cnnectin t Celestix HOTPin Click n Test t check whether FrtiGate is able t cnnect t the HOTPin appliance. Use the HOTPin administrative username and passwrd. Once FrtiGate is able t cnnect t HOTPin, click OK. Step 6: Enabling RADIUS client n Celestix HOTPin G t HOTPin > NPS Radius > RADIUS clients > New. Tick Enable this RADIUS client. Enter name and IP address f the FrtiGate bx. Apply shared secret. This cmpletes the integratin prcess. Next we ll test the lgin prcess. Testing the lgin prcess Celestix HOTPin supprts the fllwing platfrms fr generating a ne-time passwrd. Generate a ne-time passwrd using any f the client sftware belw. Micrsft Windws Andrid devices MacOS Windws phne devices ios devices (iphnes and ipads) Blackberry devices.

Step 7: Lg n t end user prvisining website. G t User Website and click n the link fr example this URL https://(appliancehstname IP):8098/htpin/ After yu have dwnladed the HOTPin app t yur Smart Device, lg n t the end user prvisining site with yur Active Directry credentials. Step 8: Create Tken Key G t Tken Key > QR Cde. Enter QR cde passphrase: Create a passphrase f at least 6 characters. Cnfirm passphrase. Cde size: Select the image size. Generate QR Cde: Click t create the image. Open the HOTPin app n yur smart device. Chse Imprt frm QR Cde. Scan the QR Cde. Enter the passphrase. Click n Imprt (IPhne) r OK with Andrid). Yu are nw able t generate a ne time passwrd and this cmpletes the ne time device prvisining prcess. Lg n back t the user prvisining website and chse HOTPin t authenticate. Further Help Fr further help, g t http://www.celestix.cm

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback