Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This article describes how to set up Nexus Personal Mobile or Nexus Personal Desktop as authentication method in Nexus Hybrid Access Gateway.

For Personal Mobile, two options can be set up: authentication on the same device or on another device. To offer the end user both options, they must be set up as two separate methods. 

Expandall

Prerequisites

Expand
titlePrerequisites

Before setting up Personal Mobile or Personal Desktop, you need the following:

Step-by-step instruction

Set up Personal

Mobile

authentication 

Expand
titleLog in to Hybrid Access Gateway administration interface
  1. Log in to the Hybrid Access Gateway administration interface with your admin user.


Expand
titleSet external DNS

Set the external DNS name, to enable external communication to the DNS.

  1. In the Hybrid Access Gateway administration interface, go to Manage system > Distribution Services.
  2. Click Manage Global Distribution Service Settings.
  3. Enter the DNS name assigned in the previous step, and the port to use in Hybrid Access Gateway for external communication.

    Panel
    titleExample: DNS settings

    External DNS name: ag5.nexusville.com
    External Port: 443



Expand
titleAdd Personal as authentication method

To add Personal Mobile or Personal Desktop as an available authentication method:

  1. In the Hybrid Access Gateway administration interface, go to Manage System > Authentication Methods.
  2. Click Add Authentication Method...
  3. Check Personal Mobile or Personal Desktop. Click Next >.
  4. In General Settings, enter a Display Name. The display name is shown to end users when they log in.
  5. If you want Hybrid Access Gateway to validate a response using a CA certificate, check Enable Personal Certificate Authentication. Click the ?-sign for help.
    1. Select the Certificate Authority that issued the certificates used in Personal.

      Note

      For Personal Desktop, the selected certificate authority does not work as a filter, so certificates from all certificate authorities will be displayed to the end user in Personal Desktop.


  6. Only for Personal Mobile: if you want to enforce authentication on the same device, check Enable authentication on same device and do the following settings:

    1. In Wait for (seconds), enter a number of seconds for the image to be displayed before being redirected to Personal Mobile.

    2. In Redirect Text, change the text if required.
    Note

    To offer the end users an option to authenticate on the same device or on another device, you must add two separate authentication methods, one where authentication on same device is enabled (enforced) and one where it is not.


  7. Click Add Authentication Method Server… Select an authentication server.
    Click Next >.
  8. Click Next > and thenFinish Wizard.
  9. Click Publish, that is marked blue, showing that updates have been done.

Enable Personal to an end user

Expand
titleEnable Personal Mobile to end user

To enable Personal to an end user:

  1. In the Hybrid Access Gateway administration interface, go to Manage accounts and storage > User accounts.
  2. Enter the User ID and click Search.
  3. Click the User ID in the search results.
  4. Go to the PortWise Authentication tab.
  5. Scroll down and check Enable Personal for the user account.
  6. For Personal Mobile, do the following additional steps:
    1. If you want to issue a new profile right away, check Create new profile.
    2. Select email notification, to send an email to the user with a QR code to activate Personal Mobile:
      Select Notification: By E-mail.
      Click Save.
    3. The user can now activate Personal Mobile.
    4. To enable self-service, see Enable Personal Mobile self-service.
  7. Click Publish.


This article is valid from Hybrid Access Gateway 5.13

Video tutorial

Widget Connector
width250
urlhttps://www.youtube.com/watch?v=L3jIj8YAgEA&list=PL30XJMN7yL-SiZ05KwIdMl7Q_pMM959je&index=3
height200

Related information

Links


Personal Mobile user interface