View Source

We need to add DualShield RADIUS to the Mobility and configure its properties.

Add Dualshield RADIUS server

1. Go to Mobility console > Configure > Authentication Settings.

2. In the left pane, select the Authentication Profile we have created for SAML authentication, e.g. "DualShield RADIUS"

3. In the middle pane, select "RADIUS: User Authentication | Servers"

4. In the right pane, tick "DualShield RADIUS Authentication Setting Override"

DualShield MFA Platform > Configure RADIUS settings in the DualShield RADIUS Authentication Profile > image2022-7-18_15-59-13.png

5. Click the "Add" button to add your DualShield RADIUS server

DualShield MFA Platform > Configure RADIUS settings in the DualShield RADIUS Authentication Profile > image2022-7-18_16-0-46.png

6. Click "OK" to save it

DualShield MFA Platform > Configure RADIUS settings in the DualShield RADIUS Authentication Profile > image2022-7-18_16-1-27.png

Set RADIUS Retransmit Interval

Now that we have added your DualShield RADIUS server to your Mobility server, we need to configure a few options

1. In the middle pane, click "RADIUS: User Authentication | Retransmit Interval".

2. In the right pane, tick "DualShield RADIUS Authentication Setting Override"

3. Set the Interval to 40,000 or larger

4. Click "Apply" to save the change

DualShield MFA Platform > Configure RADIUS settings in the DualShield RADIUS Authentication Profile > image2022-7-18_16-8-1.png

Logon to the NetMotion Mobility Server

Click on Configure>Authetication Settings

Select the newly created Authentication Profile for RADIUS, e.g. DualShield RADIUS

There are three settings that need to be applied. The settings are found in the middle pane.

Section	Option
Authentication	Protocol
RADIUS: User Authentication	Retransmit Interval
RADIUS: User Authentication	Servers

DualShield MFA Platform > Configure RADIUS settings in the DualShield RADIUS Authentication Profile > NM20.png

Click on Protocol

Select RADIUS - EAP (PEAP and EAP-TLS)

Click Apply

DualShield MFA Platform > Configure RADIUS settings in the DualShield RADIUS Authentication Profile > NM30.png

Select Retransmit Interval (under 'User Authentication')

Enter an interval long enough for a user’s mobile device to receive and respond to authentication requests. Recommended: at least 40000 milliseconds.

DualShield MFA Platform > Configure RADIUS settings in the DualShield RADIUS Authentication Profile > NM31.png

Click on Servers (under 'User Authentication')

Click the Add button

DualShield MFA Platform > Configure RADIUS settings in the DualShield RADIUS Authentication Profile > NM32.png

In the RADIUS Server Entry, please enter the following information:

Option

Value

Host address:

Enter the IP address of machine that your DualShield Radius Server was installed

Port:

1812

Shared Secret:

&

Confirm Shared Secret:

The shared secret will match the one you created when Registering NetMotion as a RADIUS client

Click: OK

DualShield MFA Platform > Configure RADIUS settings in the DualShield RADIUS Authentication Profile > NM33.png

Client Settings

Click on Configure>Client Settings

Option - You may apply the following settings to device or user groups or just apply globally.

There are two settings that need to be applied. The settings are found in the middle pane under Logon

Section	Option
Logon	Always Prompt for User Credentials
Logon	Connecting Dialog Duration

Select the option Always Prompt for User Credentials

Enable Always prompt when connecting

Click Apply

DualShield MFA Platform > Configure RADIUS settings in the DualShield RADIUS Authentication Profile > image2017-1-5 12:52:8.png

Select the option Connecting Dialog Duration

Change Wait time to 120 seconds

Click Apply

DualShield MFA Platform > Configure RADIUS settings in the DualShield RADIUS Authentication Profile > image2017-1-5 12:53:30.png

Add Dualshield RADIUS server

Set RADIUS Retransmit Interval

Client Settings

Related Articles