VPNGoupCom Herkes çevrimiçi güvenlik ve gizlilik konusunda endişe ve kişisel bilgilerini ve tarama alışkanlıkları ortaya istemiyoruz, VPN harika bir çözüm
(upbeat instrumental music) – [Instructor] Hi, I'mMatt from Duo Security.
Within this video clip I'm going to tell you about how to safeguard your PulseConnect Secure SSL VPN with Duo.
Be sure to reference the documentation for this configuration atduo.
com/docs/pulseconnect.
Before starting the setup method, Make certain that Duo iscompatible with all your Pulse VPN.
Log on to your administrator Website interface and confirm that yourfirmware is Edition 8.
2.
Furthermore, you need to Have got a functional Most important authentication configuration for the SSL VPN end users, including LDAP authenticationto active directory.
(upbeat instrumental new music) Log in into the Duo admin panel.
(upbeat instrumental songs) From the still left facet bar, simply click apps.
Simply click “Safeguard anapplication” and kind juniper during the research bar.
Underneath the entry for Juniper SSL VPN, click protect this software.
Your integration critical, secretkey, and API host title are presented within the topof the Homes page.
You may need these afterwards all through setup.
Click the hyperlink to downloadthe Duo Juniper eight.
x offer.
This file is tailored in your account and it has your Duo account IDappended for the file title.
Note that Duo's Juniper configuration is compatible with Pulse Hook up Secure and you will alter the displayname of the software at the bottom in the Homes page.
For easy reference, changethe identify of the software to Pulse Join Safe VPN.
(upbeat instrumental audio) Click help you save adjustments.
(upbeat instrumental new music) Now modify the check in webpage.
Log in on your Pulse Link Secure administrator Net interface.
(upbeat instrumental songs) In the top menu, navigateto authentication, signing in, sign up webpages.
(upbeat instrumental tunes) Simply click upload custom pages.
(upbeat instrumental tunes) Within the identify area, variety Duo.
Set website page kind to Access.
(upbeat instrumental audio) Next to templates file, click Look through and select the Duo Juniper zip file you downloaded in the admin panel.
Do not decide on the “use personalized web page for Pulse desktop client logon” or “prompt the secondary qualifications on the second web page” possibilities, If they're present.
Check the skip validationchecks for the duration of add box.
Click on add custom web pages.
You could possibly overlook any warnings that seem.
Up coming insert the Duo LDAP server.
Open up a whole new browser window and navigate to duo.
com/docs/pulseconnect.
(upbeat instrumental music) Scroll down to the “Incorporate theDuo LDAP Server” portion of your documentation.
You'll find strings you cancopy from this area to make set up less difficult.
(upbeat instrumental music) In the top menu of youradministrator interface, navigate to authentication, auth servers.
(upbeat instrumental music) Within the auth server typelist, pick LDAP server.
Click on new server.
(upbeat instrumental new music) Within the identify subject, kind Duo-LDAP.
During the LDAP server discipline, enter your API hostname from a software’s Attributes webpage in the Duo admin panel.
(upbeat instrumental songs) Established the LDAP port to 636.
(upbeat instrumental tunes) During the LDAP server typedrop down, select generic.
Beside relationship, clickthe radio button for LDAPS.
While in the authentication expected segment, Check out the “authenticationrequired to search LDAP” box.
(upbeat instrumental audio) Copy the admin DN stringfrom the documentation page and paste it inside the admin DN discipline in the heart beat Secure Net interface.
(upbeat instrumental songs) Substitute the integrationunderscore crucial variable together with your integration critical.
(upbeat instrumental music) Then copy your secret critical and paste it from the password area.
In the getting consumer entries part, duplicate the string you applied inthe admin DN section above and paste it in the base DN area.
(upbeat instrumental tunes) Then duplicate the filter fromthe documentation website page and paste it while in the filterfield in the online interface.
(upbeat instrumental music) Click help you save.
(upbeat instrumental music) After you simply click help you save, youmight get a information indicating which the LDAPserver is unreachable.
It is possible to disregard this concept.
Now you need to configure a person realm for your Duo LDAP server.
To perform this, you cancreate a completely new realm for testing, make a realm to graduallymigrate end users in the new system, or use the default consumers realm.
For this movie, We've got previously designed a Duo customers team that we'll configure to implement Duo for secondary authentication.
With your VPN interface, navigate to buyers, person realms, and click the hyperlink to the consumer realm you need to include secondary authentication to.
Underneath the additionalauthentication servers area, find the “enable additionalauthentication server” checkbox.
(upbeat instrumental songs) During the authentication quantity two field, pick Duo-LDAP.
Beside consumer identify is, select the radio button for predefined as and enter if It's not necessarily already existing.
(upbeat instrumental audio) Close to password is, find the button for specified by consumer on sign in website page.
(upbeat instrumental songs) Verify the box for “endsession if authentication versus this server fails”.
(upbeat instrumental new music) Click save changes.
(upbeat instrumental audio) Click on the authentication plan tab https://vpngoup.com at the highest from the pageand then click password.
(upbeat instrumental tunes) Inside the choices for the additional authentication server area, choose “enable all buyers”.
Simply click save changes.
(upbeat instrumental audio) To finish starting your integration, configure a register policyfor secondary authentication.
In this instance We're going to make use of the default asterisk slash URL plan, but you can create a new check in policy at a personalized URL like asteriskslash Duo-testing for testing.
In the best menu, visit authentication, signing in, sign up policies.
(upbeat instrumental new music) Click on the website link for your sign in policy that you would like to modify.
From the check in website page list, pick out Duo.
(upbeat instrumental songs) During the authentication realm section, decide on the radio button for “person picks from a listing of authentication realms”.
Choose the person realmyou configured earlier and click on incorporate.
Ensure that this is the only picked realm for this sign up page.
Click save alterations.
(upbeat instrumental music) With everything configured, now it is time to check your setup.
In your browser, navigate to your URL that you just defined in your register coverage.
(upbeat instrumental audio) Once you comprehensive primary authentication, the Duo Prompt seems.
Applying this prompt, end users can enroll in Duo or complete two-component authentication.
Considering that this consumer has alreadybeen enrolled in Duo, you may pick out mail me a press, connect with me, or enter a passcode.
Pick “send out me a force” tosend a Duo press notification to the smartphone.
On your cellular phone, open up the notification, faucet the green button toaccept, therefore you're logged in.
You might have successfully established upDuo two-aspect authentication for yourself Pulse Hook up Secure VPN.
(upbeat instrumental music).