VPNGoupCom Herkes çevrimiçi güvenlik ve gizlilik konusunda endişe ve kişisel bilgilerini ve tarama alışkanlıkları ortaya istemiyoruz, VPN harika bir çözüm
(upbeat instrumental tunes) – [Instructor] Hi, I'mMatt from Duo Security.
Within this online video I'll show you how to protect your PulseConnect Protected SSL VPN with Duo.
Make sure you reference the documentation for this configuration atduo.
com/docs/pulseconnect.
Before starting the setup course of action, Ensure that Duo iscompatible with your Pulse VPN.
Go online on your administrator Website interface and verify that yourfirmware is version 8.
2.
In addition, you might want to have a useful Principal authentication configuration on your SSL VPN buyers, such as LDAP authenticationto active directory.
(upbeat instrumental tunes) Log in on the Duo admin panel.
(upbeat instrumental music) During the still left facet bar, simply click purposes.
Click on “Guard anapplication” and type juniper during the research bar.
Beneath the entry for Juniper SSL VPN, click on guard this software.
Your integration important, secretkey, and API host name are presented on the topof the Homes website page.
You will need these later throughout setup.
Click the link to downloadthe Duo Juniper eight.
x package deal.
This file is tailored for the account and has your Duo account IDappended for the file name.
Note that Duo's Juniper configuration is compatible with Pulse Hook up Protected and you can change the displayname of this application at the bottom from the Qualities website page.
For straightforward reference, changethe identify of the software to Pulse Join Safe VPN.
(upbeat instrumental tunes) Click save changes.
(upbeat instrumental tunes) Now modify the register website page.
Log in to the Pulse Hook up Secure administrator World wide web interface.
(upbeat instrumental audio) In the highest menu, navigateto authentication, signing in, check in pages.
(upbeat instrumental audio) Click on add custom made pages.
(upbeat instrumental audio) Within the name area, style Duo.
Established web site variety to Accessibility.
(upbeat instrumental songs) Beside templates file, click on Look through and choose the Duo Juniper zip file you downloaded in the admin panel.
Don't select the “use custom website page for Pulse desktop consumer logon” or “prompt the secondary credentials on the next webpage” alternatives, When they are current.
Check out the skip validationchecks through upload box.
Click on upload tailor made pages.
You could possibly overlook any warnings that look.
Next increase the Duo LDAP server.
Open a different browser window and navigate to duo.
com/docs/pulseconnect.
(upbeat instrumental audio) Scroll all the way down to the “Include theDuo LDAP Server” area of the documentation.
There are strings you cancopy from this part to help make setup a lot easier.
(upbeat instrumental audio) In the highest menu of youradministrator interface, navigate to authentication, auth servers.
(upbeat instrumental music) In the auth server typelist, pick out LDAP server.
Click new server.
(upbeat instrumental new music) While in the title area, kind Duo-LDAP.
In the LDAP server area, enter your API hostname from a application’s Attributes web page within the Duo admin panel.
(upbeat instrumental tunes) Established the LDAP port to 636.
(upbeat instrumental music) Within the LDAP server typedrop down, find generic.
Beside connection, clickthe radio button for LDAPS.
While in the authentication required section, Verify the “authenticationrequired to look LDAP” box.
(upbeat instrumental https://vpngoup.com new music) Duplicate the admin DN stringfrom the documentation website page and paste it while in the admin DN industry in the heartbeat Protected Internet interface.
(upbeat instrumental new music) Swap the integrationunderscore essential variable along with your integration crucial.
(upbeat instrumental new music) Then copy your magic formula essential and paste it inside the password area.
Within the getting consumer entries segment, copy the string you applied inthe admin DN segment earlier mentioned and paste it in the base DN field.
(upbeat instrumental music) Then copy the filter fromthe documentation site and paste it inside the filterfield in the online interface.
(upbeat instrumental songs) Click on preserve.
(upbeat instrumental tunes) After you click on save, youmight receive a message indicating which the LDAPserver is unreachable.
You are able to disregard this information.
Now you might want to configure a person realm to the Duo LDAP server.
To perform this, you cancreate a new realm for screening, make a realm to graduallymigrate users in The brand new program, or make use of the default customers realm.
For this online video, We now have now made a Duo users team that we are going to configure to implement Duo for secondary authentication.
In your VPN interface, navigate to consumers, consumer realms, and click on the backlink with the consumer realm you wish to add secondary authentication to.
Underneath the additionalauthentication servers segment, choose the “enable additionalauthentication server” checkbox.
(upbeat instrumental new music) Inside the authentication range two subject, choose Duo-LDAP.
Next to consumer name is, choose the radio button for predefined as and enter if It isn't now present.
(upbeat instrumental songs) Beside password is, pick the button for specified by person on register web site.
(upbeat instrumental audio) Examine the box for “endsession if authentication in opposition to this server fails”.
(upbeat instrumental tunes) Click on conserve improvements.
(upbeat instrumental music) Click the authentication policy tab at the top of the pageand then simply click password.
(upbeat instrumental music) In the options for the extra authentication server section, select “allow all buyers”.
Click on save improvements.
(upbeat instrumental new music) To finish putting together your integration, configure a check in policyfor secondary authentication.
In this example We're going to utilize the default asterisk slash URL plan, however , you can set up a whole new sign up coverage at a custom URL like asteriskslash Duo-screening for tests.
In the top menu, drop by authentication, signing in, sign in insurance policies.
(upbeat instrumental music) Click on the backlink for the sign in policy that you would like to switch.
Within the sign in page checklist, find Duo.
(upbeat instrumental new music) Within the authentication realm part, choose the radio button for “person picks from a summary of authentication realms”.
Select the consumer realmyou configured earlier and click on incorporate.
Make sure This can be the only picked realm for this sign in site.
Click help save alterations.
(upbeat instrumental new music) With all the things configured, now it is time to check your set up.
With your browser, navigate towards the URL you outlined for the register plan.
(upbeat instrumental tunes) When you comprehensive Major authentication, the Duo Prompt seems.
Working with this prompt, people can enroll in Duo or comprehensive two-issue authentication.
Considering the fact that this consumer has alreadybeen enrolled in Duo, you could find deliver me a force, get in touch with me, or enter a passcode.
Pick “deliver me a push” tosend a Duo push notification in your smartphone.
In your cellphone, open up the notification, tap the inexperienced button toaccept, therefore you're logged in.
You may have productively established upDuo two-component authentication for you Pulse Join Protected VPN.
(upbeat instrumental new music).