VPNGoupCom Herkes çevrimiçi güvenlik ve gizlilik konusunda endişe ve kişisel bilgilerini ve tarama alışkanlıkları ortaya istemiyoruz, VPN harika bir çözüm
(upbeat instrumental audio) – [Teacher] Hi, I'mMatt from Duo Stability.
In this movie I'll show you how to shield your PulseConnect Safe SSL VPN with Duo.
Make sure you reference the documentation for this configuration atduo.
com/docs/pulseconnect.
Before beginning the set up procedure, Ensure that Duo iscompatible along with your Pulse VPN.
Go online in your administrator Internet interface and confirm that yourfirmware is version 8.
two.
On top of that, you should Use a purposeful Key authentication configuration in your SSL VPN customers, such as LDAP authenticationto active Listing.
(upbeat instrumental audio) Log in on the Duo admin panel.
(upbeat instrumental songs) Inside the remaining aspect bar, click on programs.
Simply click “Defend anapplication” and kind juniper within the search bar.
Beneath the entry for Juniper SSL VPN, simply click defend this software.
Your integration critical, secretkey, and API host title are provided within the topof the Qualities web page.
You'll need these later in the course of setup.
Click on the connection to downloadthe Duo Juniper 8.
x bundle.
This file is custom-made for your account and it has your Duo account IDappended for the file identify.
Take note that Duo's Juniper configuration is appropriate with Pulse Link Protected and you will alter the displayname of the software at The underside with the Qualities web page.
For easy reference, changethe name of the software to Pulse Hook up Secure VPN.
(upbeat instrumental music) Click conserve changes.
(upbeat instrumental songs) Now modify the check in web page.
Log in on your Pulse Link Safe administrator Website interface.
(upbeat instrumental audio) In the top menu, navigateto authentication, signing in, register pages.
(upbeat instrumental music) Click on add customized web pages.
(upbeat instrumental music) During the identify discipline, variety Duo.
Set web page type to Entry.
(upbeat instrumental tunes) Close to templates file, click Look through and choose the Duo Juniper zip file you downloaded through the admin panel.
Don't pick the “use tailor made website page for Pulse desktop shopper logon” or “prompt the secondary qualifications on the second webpage” options, When they are present.
Test the skip validationchecks through upload box.
Click add custom pages.
Chances are you'll ignore any warnings that appear.
Up coming insert the Duo LDAP server.
Open up a new browser window and navigate to duo.
com/docs/pulseconnect.
(upbeat instrumental songs) Scroll down to the “Include theDuo LDAP Server” part of the documentation.
There are actually strings you cancopy from this part to make set up much easier.
(upbeat instrumental audio) In the highest menu of youradministrator interface, navigate to authentication, auth servers.
(upbeat instrumental music) Inside the auth server typelist, choose LDAP server.
Click new server.
(upbeat instrumental audio) While in the identify area, variety Duo-LDAP.
Inside the LDAP server field, enter your API hostname out of your application’s Qualities site in the Duo admin panel.
(upbeat instrumental new music) Established the LDAP port to 636.
(upbeat instrumental tunes) During the LDAP server typedrop down, pick generic.
Close to link, clickthe radio button for LDAPS.
Inside the authentication expected part, check the “authenticationrequired to go looking LDAP” box.
(upbeat instrumental audio) Duplicate the admin DN stringfrom the documentation page and paste it inside the admin DN discipline in the heart beat Protected Website interface.
(upbeat instrumental audio) Switch the integrationunderscore essential variable with all your integration critical.
(upbeat instrumental music) Then copy your solution key and paste it during the password subject.
From the finding consumer entries segment, copy the string you used inthe admin DN part over and paste it in The bottom DN subject.
(upbeat instrumental tunes) Then copy the filter fromthe documentation web site and paste it while in the filterfield in the online interface.
(upbeat instrumental tunes) Click preserve.
(upbeat instrumental tunes) When you click conserve, youmight get a concept indicating which the LDAPserver is unreachable.
You could disregard this information.
Now you need to configure a user realm for the Duo LDAP server.
To perform this, you cancreate a brand new realm for tests, make a realm to graduallymigrate consumers in The brand new system, or use the default people realm.
For this video clip, Now we have by now produced a Duo customers team that we are going to configure to implement Duo for secondary authentication.
Inside your VPN interface, navigate to people, consumer realms, and click the website link to the person realm you wish to incorporate secondary authentication to.
Under the additionalauthentication servers portion, pick the https://vpngoup.com “allow additionalauthentication server” checkbox.
(upbeat instrumental music) While in the authentication number two discipline, find Duo-LDAP.
Close to consumer identify is, choose the radio button for predefined as and enter if It isn't by now existing.
(upbeat instrumental tunes) Next to password is, select the button for specified by consumer on sign up site.
(upbeat instrumental tunes) Verify the box for “endsession if authentication towards this server fails”.
(upbeat instrumental tunes) Click help save alterations.
(upbeat instrumental audio) Simply click the authentication plan tab at the very best of your pageand then click on password.
(upbeat instrumental music) During the choices for the additional authentication server segment, decide on “make it possible for all consumers”.
Click conserve variations.
(upbeat instrumental music) To complete putting together your integration, configure a check in policyfor secondary authentication.
In this instance we will utilize the default asterisk slash URL policy, however you can create a brand new sign in plan at a customized URL like asteriskslash Duo-testing for tests.
In the very best menu, check out authentication, signing in, register guidelines.
(upbeat instrumental songs) Click on the backlink with the sign in plan that you might want to switch.
Within the register webpage list, pick Duo.
(upbeat instrumental audio) From the authentication realm section, find the radio button for “person picks from a listing of authentication realms”.
Choose the user realmyou configured previously and click insert.
Be certain This can be the only picked realm for this sign up web page.
Simply click save alterations.
(upbeat instrumental new music) With every little thing configured, it is currently time to check your setup.
As part of your browser, navigate on the URL that you simply defined to your sign in policy.
(upbeat instrumental new music) After you comprehensive Most important authentication, the Duo Prompt seems.
Utilizing this prompt, users can enroll in Duo or comprehensive two-aspect authentication.
Given that this user has alreadybeen enrolled in Duo, you may decide on mail me a push, phone me, or enter a passcode.
Choose “send me a press” tosend a Duo press notification for your smartphone.
On the telephone, open up the notification, faucet the inexperienced button toaccept, and you're logged in.
You have effectively set upDuo two-variable authentication in your case Pulse Link Protected VPN.
(upbeat instrumental new music).