How it Works
HID
Loading...
Wallix and ActivID AAA
User Manual
12 pgs193.57 Kb1
Table of contents
Loading...

HID Wallix and ActivID AAA User Manual

hidglobal.com
4TRESS AAA and
®
Wallix
Document Version 1.2 | Released | May 2013
AdminBastion
4TRESS AAA and Wallix AdminBastion | Integration Handbook
External Release | © 2012
2

Table of Contents

1.0
Introduction ..................................................................................................................................................... 3
1.1 Scope of Document .................................................................................................................................... 3
1.2 Prerequisites .............................................................................................................................................. 3
2.0 AdminBastion Configuration ......................................................................................................................... 4
2.1 Procedure 1: Create New RADIUS Server Instance .................................................................................. 4
2.2 Procedure 2: Create Users......................................................................................................................... 5
2.2.1 Task 1: Import Users from an LDAP/LDAPS/AD Directory ............................................................... 5
2.2.2 Task 2: Create Manual Users............................................................................................................ 6
3.0 AAA Configuration .......................................................................................................................................... 7
3.1 Procedure 1: Configure the WALLIX Gate ................................................................................................. 7
3.2 Procedure 2: Assign Group(s) to the WALLIX Gate .................................................................................. 8
4.0 Sample Authentication ................................................................................................................................. 10
Copyright ................................................................................................................................................................. 11
Trademarks ............................................................................................................................................................. 11
Revision History ..................................................................................................................................................... 11
-2013 HID Global Corporation/ASSA ABLOY AB. All rights reserved. Page |
4TRESS AAA and Wallix AdminBastion | Integration Handbook
External Release | © 2012
3

1.0 Introduction

WALLIX® AdminBastion (or WAB) is a solution that you can install in your Information System that provides information—in real or delayed time—on who did what, where, and how. With WAB, you can control the access of internal or external IT service providers. You can record service provider work sessions and review them as and when needed (audit sessions, incidents, etc.).
The HID Global solutions that work with WAB provide versatile, flexible, strong aut hent icati on that is scalable and simple to manage.
There are two main HID Global solutions:
AAA Server for Remote Access—Addresses the security risks associated with a mobile workforce remotely accessing systems and data.
Authentication Server (AS)—Offers support for multiple authentication methods that are useful for diverse audiences across a variety of service channels (SAML, RADIUS, etc.), including user name and password, mobile and PC soft tokens, one-time passwords, and transparent Web soft tokens.

1.1 Scope of Do cument

This document explains how to set up 4TRESS AAA authentication with the WALLIX AdminBastion solution.

1.2 Prerequisites

4TRESS AAA Server is up-to-date (version 6.7) with LDAP users and groups already configured.
WALLIX AdminBastion is installed and configured (vers ion wab2-3.0.2.16 or more recent).
-2013 HID Global Corporation/ASSA ABLOY AB. All rights reserved. Page |
4TRESS AAA and Wallix AdminBastion | Integration Handbook
External Release | © 2012
4

2.0 AdminBastion Configurat ion

This chapter describes how to manage WALLIX AdminBastion. When a user signs into a WALLIX AdminBastion appliance, the WALLIX appliance forwards the user’s credentials to an authentication server to verify the user’s identity. You will create a new RADIUS server instance for the 4TRESS AAA server to validate the user’s one time password generated by a token.

2.1 Procedure 1: Create New RADIUS Server Instance

When an external RADIUS s er ver is used to authenticate WALLIX users, you must configure the RADIUS server to recognize the WALLIX as a client, and you must specify a shared secret for the RADIUS server to use to authenticate client requests. To configure a connection to the RADIUS server on the WALLIX AdminBastion appliance, perform the following steps.
1. On the main tab of the navigation pane, expand WAB Configuration, and then click External Authentication.
2. Specify the following:
3. Click Apply.
Name/label of the authentication
IP address or server FQDN
RADIUS port
Pre-shared-key
-2013 HID Global Corporation/ASSA ABLOY AB. All rights reserved. Page |
Loading...
+ 8 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use