Table of Contents
Advertisement
3. OTP Authentication to an OTP-protected Network via SSL VPN over
ZyWALL USG
In the following example, we will employ Two Factor Authentication (ZyXEL OTP pack) to enhance
password security by using the SSL VPN application provided by ZyWALL USG.
In order to use this application, you are required to configure your ZyWALL USG and SafeWord according
to the following steps:
1. Install the SafeWord server software on a computer.
(Note: Please refer to the SafeWord installation guide in Chapter 2. For more details, please check the
SafeNet website for the installation documentation)
2. Create the user accounts on the ZyWALL USG and in the SafeWord server.
3. Import each token's database file into the server.
4. Assign the users to the OTP tokens (on the SafeWord server).
5. Configure the SafeWord installation as a RADIUS server in the ZyWALL USG Object > AAA Server
screens.
6. Distribute the OTP tokens to (local or remote) the users who will remotely log into the ZyWALL USG.
Note: ZyWALL OTP is a stand-alone product, which is not included in the ZyWALL USG package.
Network Topology
In this example, we will have one token and we will create user "OTP" who will log into ZyWALL USG with
OTP.
All contents copyright © 2010 ZyXEL Communications Corporation.
ZyXEL
– ZyWALL OTPv2 Support Notes
42
Advertisement
Table of Contents
