12.1 Configuring Integration with Barracuda SSL VPN

Open the Advanced Authentication Admin Interface.

Go to the Events section.

Open properties of the Radius Server event.

Set the Radius Server event to the ON mode.

Select one or more chains from the list of Used chains (make sure that they are enabled and set to the users group in the Chains section).

Add a Client, enter an IP address of the Barracuda SSL VPN appliance, specify a secret, confirm it and set the Enabled option.

Click the Save button in the Client string. Click the Save button at the bottom of the Events view to save changes.

Sign-in to the Barracuda SSL VPN Configuration portal as ssladmin.

Browse menu Access Control -> Configuration.

Scroll down to RADIUS section.

Enter Advanced Authentication appliance IP address in the RADIUS Server text field.

Specify a shared secret in the Shared Secret text field.

Set Authentication Method to PAP.

Set Reject Challenge to No to allow challenge response.

Click Save Changes.

Switch to Access Control -> User Databases.

Create User Database using the same storage as you are using in the Advanced Authentication.

Switch to Access Control - Authentication Schemes.

In the bottom of the view, click Edit in front of Password scheme for the added User Database.

Move RADIUS from Available modules to Selected modules.

Remove the Password module from the Selected modules.

Apply the changes.

Enter user’s credentials.

Click More and select the configured User Database (if the database is not selected by default).

Click Log In and approve the authentication on the user’s smartphone.