By: Tan Mientras user 20 Oct 2022 at 2:10 a.m. CDT

2 Responses

Hi. Trying to figure out how to enable two-step authentication with our palo alto for users within our ldap, seems it needs to be done with radius, but I have been unable to make it work. Apart from creating a client for radius, share a secret and configuring palo alto accordingly, what more steps do I need to make? Considering we use globalprotect for VPN access (which asks for user and password only), how it will handle two-step authentication? will it require OTP after login dialog?

Gluu 4.4 Ubuntu 22.04

closed

By Mohib Zico staff 04 Nov 2022 at 10:53 a.m. CDT

Copy

@Dzouato Djeumen.Rolain Bonaventure: any help we can provide to Tan?

By Dzouato Djeumen Rolain Bonaventure staff 07 Nov 2022 at 1:59 a.m. CST

Copy

Hello Tan, No more steps are required. Just make sure `gluu-radius` is running. As for two steps, the current setup is designed to operate with our Super Gluu application for two factor authentication (a push notification is sent to the user's phone , that he has to approve). But it can be modified for anything , from OTP to anything MFA one can think of .

You need to Login in order to post an answer

integrating palo alto radius for two-step authentication

By: Tan Mientras user 20 Oct 2022 at 2:10 a.m. CDT

Answers

By Mohib Zico staff 04 Nov 2022 at 10:53 a.m. CDT

By Dzouato Djeumen Rolain Bonaventure staff 07 Nov 2022 at 1:59 a.m. CST

Post an answer