In order to use DeepNet Authenticator (DNA) in a RADIUS-based system, such as a VPN server or a firewall appliance, etc, we need to create 2 logon procedures. One logon procedure is for the normal RADIUS logon process, and the other is for the DeepNet Authenticator.
Add the desired logon steps into the RADIUS and DNA logon procedures respectively.
Typically, you would add Deepnet Authenticator as the last step in the RADIUS logon procedure:
In the logon procedure for the DeepNet Authenticator, you can add any authentication methods that DNA supports, such as OTP, FIDO, etc.
