PingID Administration Guide

Adding a New Authentication Realm

To configure Juniper for PingID multi-factor authentication (MFA), you must add a new authentication realm.

Steps

  1. In the left-hand navigation pane, go to Users → User Realms → New.

    Result:

    The New Authentication Realm window opens.

    A screen capture of the New Authentication Realm window.

  2. In the Name field, enter a name for the Authentication Realm.

  3. In the Servers section, enter the following information:

    1. From the Authentication list, select the name of the RADIUS server created in Adding a RADIUS Server.

    2. From the User Directory/Attribute list, select Same as Above.

    3. From the Accounting list, select the name of the RADIUS server created in Adding a RADIUS Server.

    4. From the Device Attributes list, select the default value of None.

  4. Click Save Changes.

    Result:

    The Authentication Realm is saved and three additional tabs appear.

    A screen capture JuniperDemoRealm window, as configured in the previous step. The screen capture currently shows the Role Mapping tab.

  5. On the Role Mapping tab, click New Rule.

    Result:

    The Role Mapping Rule window opens.

    A screen capture of the Role Mapping Rule window.

  6. In the Role Mapping Rule window, enter the following information:

    1. From the Rule Based On list, select Username.

    This is the default value.

    1. In the Name field, enter a name for the rule.

    2. In the * Rule: If Username…​ section, select is from the list, and then enter * in the text box.

    3. In the …​Then Assign These Roles section, select Users in the Available Roles list, and then click Add.

      Result:

      The Users role is added to the Selected Roles list.

  7. Click Save Changes.

    Result:

    The Authentication Realm is saved.