Skip to main content

NetMotion Mobility is an intelligent VPN solution designed for the mobile workforce. It's support for RADIUS makes adding two-factor authentication simple.

NetMotion Mobility is a very popular especially with police forces and other groups that need to meet CJIS requirements to access federal law enforcement databases.  In particular, section 5.6.2.2, Advanced Authentication requires two-factor authentication for remote access. 

Go to Mobility console > Configure > Authentication Settings.  Choose the appropriate level for 2FA, either Global or you can setup a specific profile for certain users.

 NetMotion Radius for 2FA

On the right-hand side, specify LEAP:

NetMotion LEAP Radius

In the list of authentication settings, select RADIUS: User Authentication - Servers.  Then click Add.

Radius server for 2FA

Enter the IP address of your WiKID server.  Leave the port as 1812 and double-enter the shared secret.  This is the same secret you will enter on the WiKID server's Network Client page.

 On the WiKID server, you need to add your NetMotion VPN as a network client.   Click on Network Clients, and then Add a new Network Client:

 

Enter the IP Address of the NetMotion:

2FA for NetMotion Config

Choose RADIUS as the protocol. Choose the Domain and Click Add.

On the next page enter the same shared secret as in the NetMotion VPN and  set the EAP Type dropdown to LEAP:

2FA Config LEAP

On the WiKID terminal, run 'wikidctl restart' to cache the RADIUS settings.

 

 

 

 



 

Copyright © WiKID Systems, Inc. 2018 | Two-factor Authentication