Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted
anchor
New Contributor III
‎05-22-2018 09:05 AM

2-factor AUTH for VPN client connections possible?

Wondering if it's possible to implement 2AUTH with the 3448 and NCP software or any other solution?

Labels (1)
Labels
0 Kudos
Reply
2 Replies
Highlighted
mick
Contributor
Contributor
‎05-24-2018 01:28 PM

Re: 2-factor AUTH for VPN client connections possible?

You could argue VPN uses 2FA by design, at least when you use TLS client certificates and XAUTH.  The username and password for XAUTH is two things you only know (typically these would be specific only to this user) and the client certificate is something you only have (client certificates ought to be unique to each client).

If however, you mean a two step verification using an Out-Of-Band mechanism, then this may be possible when using an external RADIUS server in combination with e.g. Google Authenticator, or other token based mechanism.  I'd be interested to know the specifics if someone has deployed such a system.

--

Regards,

Mick

Accept as Solution
Reply
Highlighted
anchor
New Contributor III
‎05-30-2018 01:50 PM

Re: 2-factor AUTH for VPN client connections possible?

Roger that.  I'll let you know what they end up doing if it's interesting at all 😉

Thanks!

0 Kudos
Accept as Solution
Reply