Manualshelf

Installation guide

ManualsBrandsCelestix ManualsComputer equipmentMSA 4200 Series
12345678910
1 | Page Celestix HOTPin Appliance Installation Guide
Introduction
Celestix Networks delivers an exceptional combination of perimeter security
features, scalability, and simplicity in cost-efficient appliances. Ready-to-deploy
appliances offer decreased complexity and easier management that reduce the
risk and cost of security solutions. The Celestix line of appliances provides key
security framework components: firewall, branch-office connectivity, web
cache/proxy, wireless policies/authentication, remote access (SSL and
traditional VPN), two-factor authentication, patch management, anti-spam/anti-
virus gateway deployments, and data management/protection. Celestix
appliances provide the best option for today's demanding IT infrastructure
security needs.
The foundation of your appliance is the Comet engine running on Windows
Server
®
2008 R2 Embedded. Comet provides convenient access to
administration functions like setup, network configuration, and server task
management through a web user interface. The web user interface is referred to
as the web UI in both print and online documentation.
HOTPinappliances provide cost efficient, customizable two-factor
authentication (2FA) for access to your organization’s network resources.
HOTPin is grounded in the HMAC-Based One-Time Password Algorithm (RFC
4226). The system’s two factors are a user-defined personal identification
number (PIN) and a one-time password (OTP). OTPs are codes that are
generated from token keys. Keys are created for individual users. Users
authenticate by entering their user name, PIN and an OTP at login.
HOTPin can also be configured for one-factor authentication (1FA) by disabling
the PIN feature. This may be appropriate for organizations that employ other
authentication methods, like Active Directory
®
. HOTPin then provides one
authentication factor (the OTP), and the other method provides the second (a
password, for example). Administrators should note that disabling the PIN
feature without combining another authentication form with HOTPin (as
mentioned above) would not be secure.
The 3.7 update to the HOTPin system adds the following functionality:
NPS RADIUS client import/export
QR Code authentication
API SDK
HOTPin Agent 1.1 update