4. Best Practice: Stronger Password Security
Sometimes, your password may be compromised by people-in-the-back or by
brute-attack. There are many ways to strong your password like you use a very long
(ex.12-digit password ) or a hard-to-guess password(ex. %#@9kersy62). ZyWALL SSL10
provides another solution with two-factor authentication. It's with an authenex server and
token kits. User needs to enter not only the username and password but also the numbers
generated from a trusted token. Without entering a valid number from token, user will
always fail to log in.
4.1 Using Two-factor authentication solution to provide
stronger (FIPS 140 compliant) security: SSL10+Authenex
To achieve the scenario, we need to complete following tasks.
Configure the ZyWALL SSL10 to use external RADIUS server for user authentication
Configure the Authenex Server to accept the communication with ZyWALL SSL10
and assign the token bound with the user
Simulate the access from a remote user
Configuration on ZyWALL SSL10
Step1. Create a group
All contents copyright (c) 2006 ZyXEL Communications Corporation.
ZyWALL SSL 10 Support Notes
86