Configuring Juniper as first factor authentication

Page created: 3 Jun 2020 |

Page updated: 9 Dec 2020

| 5 min read

PingId Product

Configure Juniper 8.0 as the first-factor ID provider using LDAP and PingFederate with PingID RADIUS password credential validator (PCV) as the second factor.

Configure PingFederate with a PingID RADIUS PCV, and leave the Delegate PCV section empty.

For more information, see Integration for devices using a RADIUS server.
In the Juniper admin portal, create and configure the PingID RADIUS configuration.

For more information, see Configuring Juniper for PingID multi-factor authentication.
Go to Authentication > Authentication Servers.
From the New drop-down list, select LDAP Server, and then click New Server.
In the Settings tab, complete the following fields:
1. In the Name field, enter a name for the server.
2. In the LDAP Server field, enter the IP address or hostname of the LDAP server.
3. In the LDAP Port field, keep the default value of 389, or change it according to the LDAP configuration.
4. From the LDAP Server Type list, select Active Directory.
5. From the Connection options, keep the default value of Unencrypted, or change it to match the LDAP configuration.
6. In the Connection Timeout field, enter 30.
7. In the Search Timeout field, enter 90.
8. Leave all other fields empty.
To confirm that the connection is valid before continuing, click Test Connection.
In the Authentication Required? section, complete the following fields:
1. Select the Authentication Required to Search LDAP check box.
2. In the Admin DN field, enter the admin DN.
  
  For example, CN=Administrator, CN=Users, DC=Accells, DC=Lab.
3. In the Password field, enter the admin password.
In the Finding User Entries section, complete the following fields:
1. In the Base DN field, enter the Base DN.
  
  For example, CN=Users, DC=Accells, DC=Lab.
2. In the Filter field, enter samaccountname=<USER>.

Configuring Juniper as first factor authentication - PingID

PingID Administration Guide