![]() ![]() Sophos UTM's OTP User Self Enrolment Process Select/Deselect the appropriate facilities.Ensure that the box for Auto-create OTP tokens for users is checked.Drag the relevant user or group into the Authentication Settings Users Box.Navigate to Definitions & Users | Authentication Services | One-time Password.You can specify which facilities are applicable by following these steps. For example, you may require a user to use OTP when connecting to the SSL VPN, but you don’t mind them using just a username and password when accessing a Hotspot. Not all users may need OTP, or they may not need it for every facility. Specifying the users and required facilities. Ensure that Allow all users is checked or that the appropriate users are selected in the user list box.To enable the User Portal access for your users follow these steps. This includes downloading the HTTPS inspection certificate, VPN configuration, HTML5 VPN portal and self-provisioning of Two Factor Authentication tokens.īecause self-provisioning is a function of the User Portal, this feature needs to be enabled you're not already using this part of the UTM. Sophos UTM's User Portal allows your users to access everything UTM related. This third and final article in our series on Two Factor Authentication using Sophos UTM takes you through configuring Sophos UTM for user self-enrolment of OTP, including how to revoke a token should the device be lost. The cost is obviously not limited to the price of the token, but also the time and administration required by both the Sophos UTM administrators and the users themselves. When choosing a Two Factor Authentication model, you should include the cost of user enrolment as well as token management and revocation. In the second article we moved through the steps required to enable Two Factor Authentication for Sophos UTM administration, using a manual process and specifying our own entropy. The first article in this series discussed concepts and considerations for Two Factor Authentication, and why One-time Password (OTP) with soft tokens make a lot of sense.
0 Comments
Leave a Reply. |