joel.flood (Customer) asked a question.
SonicWall SSO SSL VPN integration
I am trying to utilize Okta identity management to authenticate users to connect SonicWall SSL-VPN. Currently SSL-VPN connection (NetExtender) is authenticated through RSA radius, but would like to use Okta, if possible. Would the ideal setup include using Okta's Radius agent and connect it to the SonicWall firewall? Is there another way to use Okta and SonicWall? The NSA series firewall currently does not support SAML. (I did see the help question from 2015, but I thought to see there was any advancements)
Niel,
I was able to accomplish using Okta radius agent, and Okta Verify as the authentication provider.
Did you experience similar behavior? Or were you able to successfully use the MFA prompts?
I would not use email as a factor, that is that is a security risk.
from netextender
"password,push"
it will then send a push notification to the Okta Verify for the user to approve.
Trying to do the OTP is tough for most users as it cycles through quickly.
Okay, I just wanted to raise the issue, it seems like you have thought it out.
Please let me know if you have any further integration issues.
I am trying to attempt this myself, however everytime i select a factor netextender kicks out saying invalid username and password. Did either of you run into this? If i turn off MFA in the radius app i can access the VPN just fine.
Chris, in the password field, you need to input the password then a comma and then the work push. that will push the the notification to the Okta verify app on your mobile device.
password,push
The SMS option works similar, just password,sms
Assumptions- the firewall is configured appropriately, Okta radius agent installed, Okta radius app assigned to user, Okta Verify installed on mobile device.