Netscaler Quick guide for SMS PASSCODE © SMS PASSCODE® 2014 Netscaler Quick guide for SMS PASSCODE Prepare Citrix Netscaler for SMS PASSCODE. This document outlines the setup of Citrix Netscaler for SMS PASSCODE. As a Prerequisite, you must have a virtual server on the Netscaler with an authentication server set up with Radius Authentication. Furthermore, you will need a Microsoft Radius server Configuration of the Authentication server for SMS PASSCODE The authentication type: Radius Time-out: 10 (optional) Passcode Encoding: PAP Shared secret must be the same secret as set in the NPS´s radius client (For configurations of the MS radius server please refer to the SMS PASSCODE administrators guide). Checkmark the “Send the Calling Station ID” in order to send the End User IP. * “Send Calling station ID” is not present in Netscaler versions earlier than 10.1. Page 2 of 6 Netscaler Quick guide for SMS PASSCODE Configuring RADIUS Protection on Windows Server 2008 / 2012 The procedure for configuring RADIUS authentication using SMS PASSCODE® on a Windows Server 2008 or Windows Server 2012 is: 1. Configure all RADIUS clients in the usual way by specifying the NPS server as the RADIUS server. If you are in doubt how to perform the configuration, please refer to the configuration guide of the specific RADIUS client in question. Important: The user experience is best for RADIUS clients supporting Challenge Response. If Challenge Response support is configurable on the RADIUS client, please enable it. 2. Start the NPS Management Console: a. Select Run… in the Windows Start menu b. Enter nps.msc c. Click OK 3. The NPS Management Console is shown. 4. Now you must create all your RADIUS Clients in the NPS Management Console. If these have already been created beforehand, you can skip to step 9. Page 3 of 6 Netscaler Quick guide for SMS PASSCODE 5. To create a RADIUS Client: a. Right-click the RADIUS Clients node. b. Select New RADIUS Client. Page 4 of 6 Netscaler Quick guide for SMS PASSCODE 6. The New RADIUS Client dialog appears. a. Enter a “friendly name” of the RADIUS Client. b. Enter the IP address of the RADIUS Client. c. Enter and confirm the Shared Secret. It must match the shared secret configured on the RADIUS Client. d. Click OK. 7. The RADIUS Client that you have created will appear in the right-hand pane: 8. Repeat steps 5-7 if you need to create more RADIUS Clients. Page 5 of 6 Netscaler Quick guide for SMS PASSCODE 9. This completes the configuration of RADIUS authentication using SMS PASSCODE®. Please test each RADIUS client to make sure that RADIUS authentication works as expected. Note: By default, settings of Connection Request Policies (CRP) and Remote Access Policies (RAP) are ignored during SMS PASSCODE® authentication. However, you can enable internal IAS/NPS logic to apply CRP/RAP settings in the SMS PASSCODE Configuration tool. About SMS PASSCODE® SMS PASSCODE is the leading technology in two- and multi-factor authentication using your mobile phone. To protect against the rise in internet based identity theft hitting both consumers and corporate employees, SMS PASSCODE offers a stronger authentication via the mobile phone SMS service compared to traditional alternatives. SMS PASSCODE installs in minutes and is much easier to implement and administer with the added benefit that users find it an intuitively smart way to gain better protection. The solution offers out-of-the-box protection of standard login systems such as Citrix, Cisco, Microsoft, VMware View, Juniper and other IPsec and SSL VPN systems as well as web sites. Installed at thousands of sites, this is a proven patent pending technology. In the last years, SMS PASSCODE has been named to the Gartner Group Magic Quadrant on User Authentication, awarded twice to the prestigious Red Herring 100 most interesting tech companies list, a Secure Computing Magazine Top 5 Security Innovator, InfoSecurity Guide Best twofactor authentication, a Citrix Solution of the Year Finalist, White Bull top 30 EMEA companies, a Gazelle 2010, 2011, 2012 and 2013 Fast Growth firm and a ComOn most promising IT company Award. For more information visit: www.smspasscode.com or our blog at blog.smspasscode.com. Page 6 of 6
© Copyright 2024