In DualShield, a logon procedure defines how users should be authenticated when they attempt to log on to an application. As DualShield supports various types of applications, e.g. VPN, SAML, Desktop Login, Outlook Email etc, there are various types logon procedure.
| Application | Login Procedure | Examples | Comment |
|---|---|---|---|
| VPN | RADIUS | Cisco, Palo Alto, Juniper | |
Web/Cloud SAML Supporting Services | Web SSO | Office 365, G Suite, Service Now | |
| IIS Web Applications | Web SSO | OWA, RDWeb | |
| Computer Logon | Windows | Windows logon, MacOS logon | |
| Desktop to Web SSO | Desktop SSO | Office 365 | |
| Exchange On-Premises | Exchange Mail | Outlook Anywhere, ActiveSync | |
| Exchange Online | Enhanced Client | ActiveSync | Obsolete |
| VMware View | VMware View Agent | Obsolete | |
| Parallels Remote Access Server | 2X Agent | ||
| LDAP Supporting Applications | LDAP Agent | ||
| DualShield Provisioning Server (DPS) | Provisioning Server | Obsolete | |
| DualShield Reset Password (DRP) Service | Reset Password | ||
| DualShield Unlock Account (DUA) Service | Unlock Account | ||
| DualShield Emergency Access (DEA) Service | Emergency Access | ||
| Deepnet Authenticator | Deepnet Authenticator |
A logon procedure consists of one or more logon steps. In each logon step, the system administrator defines the authenticators that can be used by users to authenticate themselves.
Click the "CREATE" button on the toolbar
In the "Name" field, enter a name for this new logon procedure, e.g. "Office 365"
In the "Type" field, select the type of the logon procedure from the drop list, e.g. "Web SSO"
Click the "SAVE" button to save it.
Now that a new logon procedure is created, you want to add logon steps.
Navigate to Authentication | Logon Procedures
Click the context menu icon "..." of the application to be edited, e.g. "Office 365"
select "Logon Steps" to bring up the logon steps editor
To add a logon step, click the "ADD" button
Select the one or multiple authentication methods that you want to add to this step, e.g. "One-Time Password"
Click the "SAVE" button to save it
You can change the order of the steps by clicking the "UP" and "DOWN" buttons.
Navigate to Authentication | Logon Procedures
Click the context menu icon "..." of the application to be edited, e.g. "Office 365"
select "Logon Steps" to bring up the logon steps editor
To add a logon step, click the "ADD" button
Select the one or multiple authentication methods that you want to add to this step, e.g. "One-Time Password"
Click the "SAVE" button to save it
You can change the order of the steps by clicking the "UP" and "DOWN" buttons.