How it Works
HID
Loading...
Juniper and CMS
User Manual
15 pgs1.2 Mb0
Table of contents
Loading...

HID Juniper and CMS User Manual

ActivIdentity® ActivID™
Card Management System
Document Version 2.0 | Released | May 2, 2012
®
Secure Access
Integration Handbook
ActivIdentity ActivID Card Management System and Juniper Secure Access | Integration Handbook
P 2
External Use | May 2, 2012 | © 2012 ActivIdentity

Table of Contents

1.0 Introduction ....................................................................................................................................................... 3
1.1 Scope of Document .................................................................................................................................... 3
1.2 Prerequisites .............................................................................................................................................. 3
2.0 Juniper Secure Access Configuration ............................................................................................................... 4
2.1 Procedure 1: Create New Certificate Server Instance ............................................................................... 4
2.2 Procedure 2: Define Juniper User Role(s) ................................................................................................. 5
2.3 Procedure 3: Define Juniper Authentication Realm ................................................................................... 6
2.4 Procedure 4: Configure New Juniper Sign-In Page ................................................................................... 9
2.5 Procedure 5: Juniper Sign-In Policies ...................................................................................................... 10
2.6 Procedure 6: Import the CMS Appliance Root CA ................................................................................... 12
3.0 Authentication with a Smart Card and Client Certificate in the Sign-In Page. ................................................ 14
ActivIdentity ActivID Card Management System and Juniper Secure Access | Integration Handbook
P 3
External Use | May 2, 2012 | © 2012 ActivIdentity

1.0 Introduction

The Juniper® Networks SA Series SSL VPN Appliances enable remote and mobile employees, customers, and partners to gain secure access to corporate Virtual Private Network resources and applications. Providing secure access via a VPN over existing Internet connections requires strong, two-factor authentication to protect resources. The ActivIdentity solutions that work with Juniper Networks incorporate SSL VPN solutions with versatile, strong authentication that is flexible, scalable, and simple to manage.

1.1 Scope of Document

This document explains how to configure the ActivIdentity® ActivID™ Card Management System Appliance and Juniper Networks Secure Access (SA) Series of appliances to enable client authentication via certificate and smart cards.

1.2 Prerequisites

ActivIdentity ActivID CMS Appliance installed and Root CA certificate created.
Juniper SA version 7.1.x installed and configured.
Users have smart cards issued by the CMSA Appliance.
ActivIdentity ActivID Card Management System and Juniper Secure Access | Integration Handbook
P 4
External Use | May 2, 2012 | © 2012 ActivIdentity

2.0 Juniper Secure Access Configuration

This chapter describes how to configure Juniper Secure Access for use with ActivIdentity CMS. When a user signs into a Juniper SA Series appliance, the user specifies an authentication realm, which is associated with a specific authentication server. The Juniper SA Series appliance forwards the user’s credentials to this authentication server to verify the user’s identity.
You will create a new authentication server (a certificate server).

2.1 Procedure 1: Create New Certificate Server Instance

To define a certificate server instance, perform the following steps (this will create a new certificate server instance on the SA Series SSL VPN appliance).
Getting Started
1. In the Admin console, expand the Authentication menu, and then click Auth. Servers.
2. From the New drop-down list, select Certificate Server, and then click New Server.
The following dialog is displayed.
ActivIdentity ActivID Card Management System and Juniper Secure Access | Integration Handbook
P 5
External Use | May 2, 2012 | © 2012 ActivIdentity
Name—Specify a name to identify the server instance.
User Name Template—Specify the appropriate template for constructing user names.
3. Click Save Changes.

2.2 Procedure 2: Define Juniper User Role(s)

A user role is an entity that defines user session parameters, personalization settings, and enabled access features.
1. From the Admin console, expand the Users menu, point to User Roles, and then click New User Role.
2. Configure the new user role according to your requirements.
Loading...
+ 10 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use