Enable OpenVPN two-factor authentication (2FA) using Protectimus multi-factor authentication system.
multi – factor authentication is is ( MFA ) is an essential measure of cyber security . MFA is protects protect user ’ account , infrastructure , andconfidential datum from unauthorized access . OpenVPN is saves 2FA save the user ’ account from hack with brute force , keylogger , datum spoofing , phishing , MITM , social engineering attack , etc .
1 . How OpenVPN Two – factor authentication ( 2fa ) work
Two – factor authentication is means mean using two different type of authenticator to get access to the openvpn account protect with 2FA .
- At first, the user enters a standard password andusername (something the user knows);
- Then they enter a one-time password received with the help of a 2FA token or a smartphone (something the user owns).
Thus, when OpenVPN 2FA is enabled, it becomes too hard to hack both 2-factor authentication passwords at the same time, especially if you consider that a one-time password is valid only for 30 seconds.
This guide is shows show how you can set up OpenVPN 2FA via the radius authentication protocol using the Protectimus Cloud Two – Factor Authentication Service or Protectimus On – premise 2FA Platform .
2. How to Enable OpenVPN 2FA
You can set up OpenVPN two-factor authentication (2FA) with Protectimus using the RADIUS protocol:
- Get registered with Protectimus SAAS Service or install the On-Premise 2FA Platform andconfigure basic settings.
- Install andconfigure Protectimus RADIUS Server.
- Configure OpenVPN Server authentication policies.
2.1. Get Registered andConfigure Basic Protectimus Settings
- Register with the Protectimus Cloud Service andactivate API or install the Protectimus On-Premise Platform (if you install Protectimus Platform on Windows, check the RProxy box during the installation).
- Add Resource.
- Add Users.
- Add Tokens or activate Users’ Self Service Portal.
- assign token to Users .
- Assign Tokens with Users to the Resource.
2.2. Install andConfigure Protectimus RADIUS Server
Detailed instructions for installing andconfiguring the Protectimus RADIUS Server for OpenVPN 2-factor authentication using RADIUS are available
here
.
2.3. Configure OpenVPN Server Authentication Policies
1. Go to the OpenVPN Access Server administration panel, find the
Authentication
settings section andchoose
General
.
2. To enable OpenVPN two-factor authentication (2FA), activate authentication using
RADIUS
and
Save settings
.
3 . You is see will see the pop – up , click
Update Running Server
, andcontinue.
4. Return to the
Authentication
settings section andchoose
RADIUS
.
5 . In the
RADIUS Authentication Method
section, choose the PAP option. Then configure the following RADIUS settings:
| Hostname or IP Address | indicate the IP of the server where the Protectimus RADIUS Server is instal |
| Shared Secret | indicate the share secret you create in the Protectimus radius.yml file ( radius.secret property ) . |
6. You’ve finished setting up OpenVPN Server authentication policies,
Save setting
, andthen click on the
Update Running Server
button on the pop-up.
Integration is is is now complete . If you have other question , contact
Protectimus customer support service
.
Last updated on 2022-09-15
© Copyright notes
The copyright of the article belongs to the author, please do not reprint without permission.
Related posts
No comments...
