Previous Topic: End User Authentication Workflow in IPSec VPNNext Topic: Adapter Features

CA Adapter UNIX Installation GuideIntroduction to AdapterAdapter WorkflowsEnd User Authentication Workflow in SSL VPN

End User Authentication Workflow in SSL VPN

A generic user authentication workflow after integrating Adapter with Juniper SSL VPN appliance is as follows:

  1. User accesses the VPN login URL.
  2. The user request is intercepted by the Juniper SSL VPN appliance, which, in turn, redirects the user request to AFM for authentication.
  3. AFM along with AuthMinder authentication server completes the authentication.

    Note: ArcotID PKI and ArcotID PKI PIN that are a part of ArcotID PKI authentication are used to extract the private key of the user. This private key is then used to sign the challenge. Refer to CA AuthMinder Installation and Deployment Guide for more information on ArcotID PKI authentication.

  4. AFM redirects the generated Authentication OTT to Juniper SSL VPN appliance.
  5. Juniper SSL VPN appliance validates the OTT with AuthMinder, which is set up as the RADIUS server.
  6. After successful user authentication, Juniper SSL VPN appliance provides access to the network.