Establishing two-factor authentication with Barracuda NG Firewall and HOTPin authentication server from Celestix Networks



Similar documents
Establishing two-factor authentication with Cyberoam UTM appliances and HOTPin authentication server from Celestix Networks

Establishing two-factor authentication with Check Point and HOTPin authentication server from Celestix Networks

Defender Token Deployment System Quick Start Guide

Guide for Setting Up Your Multi-Factor Authentication Account and Using Multi-Factor Authentication. Mobile App Activation

Mobile Iron User Guide

Installing Logos SSL Certificates on Mobile Devices

HOTPin Integration Guide: Microsoft Office 365 with Active Directory Federated Services

ipad or iphone with Junos Pulse and Juniper SSL VPN appliance Authenticating Users Using SecurAccess Server by SecurEnvoy

Exchange ActiveSync (EAS)

Guide for Setting Up Your Multi-Factor Authentication Account and Using Multi-Factor Authentication

NetIQ Advanced Authentication Framework

HOTPin Integration Guide: DirectAccess

External Authentication with Cisco ASA Authenticating Users Using SecurAccess Server by SecurEnvoy

Two-Factor Authentication (2FA) Registration Instructions Symantec VIP Access

Contents First Time Setup... 2 Setting up the Legal Vault Client (KiteDrive)... 3 Setting up the KiteDrive Outlook Plugin Using the Legal Vault

Self-Service Portal Registering, downloading & activating a soft token

External Authentication with Windows 2012 R2 Server with Remote Desktop Web Gateway Authenticating Users Using SecurAccess Server by SecurEnvoy

Two Factor Authentication - USER GUIDE

Two-Factor Authentication

OneLogin Integration User Guide

Remote Access End User Reference Guide for SHC Portal Access

EMR Link Server Interface Installation

Two Factor Authentication (TFA; 2FA) is a security process in which two methods of authentication are used to verify who you are.

SHC Client Remote Access User Guide for Citrix & F5 VPN Edge Client

DUO SECURITY CISCO VPN USER GUIDE 1/27/2016

Sophos Mobile Control User guide for Apple ios. Product version: 4

External authentication with Fortinet Fortigate UTM appliances Authenticating Users Using SecurAccess Server by SecurEnvoy

TechNote. Contents. Introduction. System Requirements. SRA Two-factor Authentication with Quest Defender. Secure Remote Access.

How To Integrate Watchguard Xtm With Secur Access With Watchguard And Safepower 2Factor Authentication On A Watchguard 2T (V2) On A 2Tv 2Tm (V1.2) With A 2F

External authentication with Astaro AG Astaro Security Gateway UTM appliances Authenticating Users Using SecurAccess Server by SecurEnvoy

Two-Factor Authentication

MDM User Guide June 2012

2-FACTOR AUTHENTICATION WITH

SchoolBooking SSO Integration Guide

Cisco AnyConnect VPN for: Windows 8

HOTPin Integration Guide: Google Apps with Active Directory Federated Services

External Authentication with Citrix Secure Gateway - Presentation server Authenticating Users Using SecurAccess Server by SecurEnvoy

External Authentication with Juniper SSL VPN appliance Authenticating Users Using SecurAccess Server by SecurEnvoy

Sophos Mobile Control user help. Product version: 6.1

Electronic Questionnaires for Investigations Processing (e-qip)

How to remotely access your Virtual Desktop from outside the college using VMware View Client. How to guide

MOBILE DEVICE CONFIGURATION GUIDE ActiveSync

MCBDirect Corporate Logging on using a Soft Token

Yale Software Library

Setting Up groov Mobile Apps. Introduction. Setting Up groov Mobile Apps. Using the ios Mobile App

Drobo How-To Guide Drobo Apps - Configuring Copy Replication

External Authentication with Citrix Access Gateway Advanced Edition

How to Configure Active Directory based User Authentication

Airnet-Student is a new and improved wireless network that is being made available to all Staffordshire University students.

1 Outlook Web Access. 1.1 Outlook Web Access (OWA) Foundation IT Written approximately Dec 2010

Configuring Global Protect SSL VPN with a user-defined port

IIS, FTP Server and Windows

MultiSite Manager. Setup Guide

Sophos Mobile Control User guide for Apple ios. Product version: 2 Document date: December 2011

Accessing Derbyshire County Council s Outlook Web Access (OWA) Service. Smart Phone App version

Using the Remote Desktop Portal

Sophos UTM. Remote Access via SSL Configuring Remote Client

Configuring an Client to Connect to CASS Mail Servers

Dell SonicWALL and SecurEnvoy Integration Guide. Authenticating Users Using SecurAccess Server by SecurEnvoy

Technology Services Group Procedures. IH Anywhere guide. 0 P a g e

SalesForce SSO with Active Directory Federated Services (ADFS) v2.0 Authenticating Users Using SecurAccess Server by SecurEnvoy

MultiSite Manager. Setup Guide

How To Use A Citrix Netscaler Thin Client V (Windows) With A Citirix Vpn Desktop (Windows 10) With An Ipad Or Ipad (Windows 8) With Vpn

ATTENTION: End users should take note that Main Line Health has not verified within a Citrix

Sophos Mobile Control User guide for Apple ios

HOTPin Integration Guide: Salesforce SSO with Active Directory Federated Services

Using the Remote Desktop Portal

Business mail 1 MS OUTLOOK CONFIGURATION... 2

Compiled By: Chris Presland v th September. Revision History Phil Underwood v1.1

To set up your Android with Good for Enterprise:

Access to Webmail services via a Non Trust Computer

BlackBerry Universal Device Service. Demo Access. AUTHOR: System4u

Multi-Factor Authentication Job Aide

Enrollment Process for Android Devices

Allianz Global Investors Remote Access Guide

Install and End User Reference Guide for Direct Access to Citrix Applications

Brainloop Secure Dataroom Version QR Code Scanner Apps for ios Version 1.1 and for Android

Two Factor Authentication in SonicOS

Microsoft Outlook Web Access 2013 Authenticating Users Using SecurAccess Server by SecurEnvoy

Using RD Gateway with Azure Multifactor Authentication

Integration Guide. Swivel Secure Authentication

ESET SECURE AUTHENTICATION. Check Point Software SSL VPN Integration Guide

Virtual Office Remote Installation Guide

Remote Desktop Web Access. Using Remote Desktop Web Access

Configuration Guide. BES12 Cloud

Net 2. NetApp Electronic Library. User Guide for Net 2 Client Version 6.0a

ActivIdentity 4TRESS AAA Web Tokens and SSL VPN Fortinet Secure Access. Integration Handbook

Setting Up and Accessing VPN

How to Use Remote Access Using Internet Explorer

How do I use Citrix Staff Remote Desktop

WatchDox Administrator's Guide. Application Version 3.7.5

University of Central Florida UCF VPN User Guide UCF Service Desk

Configuring the Watchguard Edge for RADIUS authentication

How to configure your Desktop Computer and Mobile Devices post migrating to Microsoft Office 365

External Authentication with Windows 2003 Server with Routing and Remote Access service Authenticating Users Using SecurAccess Server by SecurEnvoy

Department of Veterans Affairs Two-Factor Authentication MobilePASS Quick Start Guide November 18, 2015

Active Directory Integration for Greentree

Creating a generic user-password application profile

Step by Step Guide to implement SMS authentication to F5 Big-IP APM (Access Policy Manager)

Microsoft Office 365 with MailDefender

Transcription:

Establishing two-factor authentication with Barracuda NG Firewall and HOTPin authentication server from Celestix Networks Contact Information www.celestix.com Celestix Networks USA Celestix Networks EMEA Celestix Networks APAC Integration completed by Kimberley Wong Kwan Lun info@celestix.com 3125 Skyway Court, Fremont, California, 94539, USA +1 510 668 0700 30 Queens Road, Reading, RG1 4AU, United Kingdom +44 (0)118 959 6198 1 Changi North Street 1, #02-02, Singapore 498789 +65 6781 0700 klun@celestix.com

This document outlines the steps required to integrate the Barracuda NG Firewall F200 with Celestix HOTPin two-factor authentication. The following steps are detailed within this guide: Adding users Enabling user self provisioning Configuring RADIUS integration in Barracuda Adding Barracuda as a RADIUS client in Celestix HOTPin Testing the login process Steps to Configure Standalone Celestix HOTPin v3.5 Prerequisites This document assumes you have followed the steps in the HOTPin Quick Start Guide, and either installed HOTPin Server v3.5, or configured your HSA Appliance ready for use. If you haven't already done so, please refer to the Quick Start Guide to complete this before proceeding. The Quick Start Guide can be found here: http://www.celestix.com/hotpin-tl.html Step 1: Launch HOTPin Administration Launch the HOTPin Management GUI using the shortcut icon on the desktop. This will load the default web browser. HOTPin ships with a default certificate to provide HTTPS security. The browser will display a certificate security warning, this is normal, choose Continue to this website. Microsoft Windows User Access Control will prompt for a username and password. Enter the administrator credentials. NOTE - depending on the web browser and the default settings, the message might be slightly different. Step 2: Adding users To add users go to HOTPin > Users. For now we ll just add one user. Click on New. Complete the user settings for an end user. Token Key: (none) Client Software (default) PIN: User will create PIN For production and full installation we recommend you make use of the Active Directory import feature within HOTPin, and then enable Active Directory Synchronization. This can be achieved easily and simply through the main Management GUI.

Step 3: Configure the user provisioning website From the main Management GUI, go to User Website and tick the Enable user website box. This will allow your users to provision a variety of tokens by accessing a user provisioning portal, but it is important to configure this in advance of giving access. Once enabled, default access to the site is: https://(appliancehostname IP):8098/hotpin/ This site is not enabled by default; it must be turned on by Administrators. At this point, the basic configuration for Celestix HOTPin is complete, and we'll return to the User Provisioning Website later. Configure RADIUS integration in Barracuda Step 4: Add Authentication Server Go to Config > Full Config >Infrastructure Services > Authentication Service > RADIUS Authentication > RADIUS Authentication Settings. Select Lock to make changes. Select Yes as Activate Scheme. Select RADIUS as Method. Enter Radius Server Address of HOTPin server. Set Radius Server Port to 1812. Enter Radius Server Key. Enter Group Attribute. Click on Send Changes > Activate > Choose Yes.

Step 5: Enabling RADIUS client on Celestix HOTPin Go to HOTPin > NPS Radius > RADIUS clients > New. Tick Enable this RADIUS client. Enter name and IP address of the Barracuda box. Apply shared secret. This completes the integration process. Next we ll test the login process. Testing the login process Celestix HOTPin supports the following platforms for generating a one-time password. For testing purposes we recommend you use your smartphone, you can search the HOTPin app in your respective app store. Microsoft Windows MacOS ios devices (iphones and ipads) Android devices Windows phone devices Blackberry device Step 6: Log on to end user provisioning website. Go to User Website and click on the link for example this URL https://(appliancehostname IP):8098/hotpin/ After you have downloaded the HOTPin app to your Smart Device, log on to the end user provisioning site with your Active Directory credentials.

Step 7: Create Token Key Go to Token Key > QR Code. Enter QR code passphrase: Create a passphrase of at least 6 characters. Confirm passphrase. Code size: Select the image size. Generate QR Code: Click to create the image. Open the app on your smart device. Choose Import from QR Code. Scan the QR Code. Enter the passphrase. Click on Import (IPhone) or OK with Android). You are now able to generate a one time password. This completes the device provisioning process. Further Help For further help, go to http://www.celestix.com

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information