Configure Juniper for PingID Multifactor Authentication

In the following steps, you will configure Juniper VPN to work with PingID MFA.

Configuring Juniper for MFA involves:

This video describes the process for your Juniper VPN:

How it works

The following flow represents a general flow. The actual configuration will vary depending on your organizational infrastructure considerations and policies.

  1. When a user opens their Juniper VPN login window (IPSec or SSL VPN) and enters a username and password, their details are sent to the RADIUS Server on PingFederate via the VPN RADIUS client.
  2. PingFederate authenticates the user’s credentials with the LDAP Server as a first-factor authentication.
  3. Upon LDAP authentication approval, the RADIUS server initiates a second authentication with PingID.
  4. The RADIUS server returns a response to the Juniper VPN. If authentication is denied or an error occurs, a message is displayed on the user’s VPN window.
Your Rating: