4TRESS AAA Out-of-Band Authentication (SMS) and SSL VPN Fortinet | Integration Handbook
External Release | © 2012-2013 HID Global Corporation/ASSA ABLOY AB. All rights reserved.
Page | 2
Table of Contents
1.0
Introduction ....................................................................................................................................................3
1.1
Scope of Document ......................................................................................................................................3
1.2
Prerequisites ................................................................................................................................................3
2.0
Secure Access Configuration.......................................................................................................................4
2.1
Procedure 1: Configure the RADIUS Authentication Server ........................................................................4
2.2
Procedure 2: Create New User Group .........................................................................................................5
3.0
4TRESS AAA Configuration .........................................................................................................................7
3.1
Procedure 1: Configure Basic SSL VPN Settings ........................................................................................7
3.2
Procedure 2: Configure the Portal ...............................................................................................................9
3.3
Procedure 3: Configure the Security Policy .............................................................................................. 10
3.4
Procedure 4: Create Tunnel Mode Security Policy ................................................................................... 12
3.5
Procedure 5: Configure Routing for Tunnel Mode .................................................................................... 14
4.0
Configure 4TRESS AAA ............................................................................................................................. 15
4.1
Procedure 1: Configure FortiGate Gate .................................................................................................... 15
4.2
Procedure 2: Assign Group(s) to the FortiGate Gate................................................................................ 17
4.3
Procedure 3: Create An Out-of-Band Delivery Gateway .......................................................................... 19
4.4
Procedure 4: Assign An SMS Token ........................................................................................................ 21
5.0
Authentication Using Out-of-Band Authentication ................................................................................. 22
Copyright ................................................................................................................................................................ 23
Trademarks ............................................................................................................................................................ 23
Revision History .................................................................................................................................................... 23
