To configure Juniper for PingID multi-factor authentication (MFA), you must add a new authentication realm.
-
In the left-hand navigation pane, go to Users > User Realms > New.
The New Authentication Realm window opens.
- In the Name field, enter a name for the Authentication Realm.
-
In the Servers section, enter the following
information:
- From the Authentication list, select the name of the RADIUS server created in Adding a RADIUS Server.
- From the User Directory/Attribute list, select Same as Above.
- From the Accounting list, select the name of the RADIUS server created in Adding a RADIUS Server.
- From the Device Attributes list, select the default value of None.
-
Click Save Changes.
The Authentication Realm is saved and three additional tabs appear.
-
On the Role Mapping tab, click New
Rule.
The Role Mapping Rule window opens.
-
In the Role Mapping Rule window, enter the following
information:
-
From the Rule Based On list, select
Username.
This is the default value.
- In the Name field, enter a name for the rule.
- In the * Rule: If Username... section, select is from the list, and then enter * in the text box.
-
In the ...Then Assign These Roles section, select
Users in the Available Roles
list, and then click Add.
The Users role is added to the Selected Roles list.
-
From the Rule Based On list, select
Username.
-
Click Save Changes.
The Authentication Realm is saved.