Before you begin
- You need to have the mobile devices you want to use at hand.
- Install the Google Authenticator app on your mobile device(s).
- Verify that the time on your mobile devices is set correctly.
Step 1. Log in and create a Google Authenticator account
You can create a Google Authenticator account with the secret-key or barcode you are presented when first logging in to the Barracuda SSL VPN.
- Log into the SSL VPN web interface.
- You are automatically forwarded to the Google Authenticator page containing a new secret-key and the corresponding bar-code.
- Launch the Google Authenticator app on your mobile devices.
Tap the menu icon in the upper right hand corner and then tap on Set up account.
- You can set up an account two different ways:
- Tap on Scan a barcode if the mobile device has a camera.
Center the highlighted camera window on the bar code in the browser until the URL found is displayed on the mobile device.
- Tap on Enter the provided key if your device does not have a camera.
- Enter the account name. E.g.,
Barracuda SSL VPN
- In the second line Enter your key. Use the Google Auth secret key listed on the SSL VPN Google Authenticator configuration page.
- Select Timed.
- Tap Add.
- Enter the account name. E.g.,
- Tap on Scan a barcode if the mobile device has a camera.
On the Barracuda SSL VPN Google Authenticator page, enter the six digit verification code generated by the Google Authenticator app on your mobile device in the Google Auth verification code text box at the bottom of the page.
- Click Verify.
The mobile app generates new verification codes every 30 seconds that allow you to authenticate on the Barracuda SSL VPN. You can also use the verification codes for Risk Based Authentication.
Step 2. Generate one-time backup codes
In case you do not have access to your mobile device with the Google Authenticator app, generate one-time backup codes as a backup log in authentication method. Each backup code can only be used once to log in to the Barracuda SSL VPN. You must have two unused backup codes to generate a new secret key. Should your backup codes become compromised, It is not necessary to generate a new secret key. Generating new list of backup codes invalidate the old backup codes.
- Go to the ACCOUNT > Google Authenticator page.
- Enter a verification code. The verification code is automatically created by the Google Authenticator app on your mobile device.
- Click on Generate One-Time Backup Codes.
Click Print.
- Logoff.
Step 3. Test the Google Authenticator authentication
To test the Google Authenticator authentication, log into the Barracuda SSL VPN. Use an authentication scheme configured which is using the Google Authenticator authentication module.
- Enter your Username.
- On your mobile device, launch the Google Authenticator app. The verification code for the login is in the Barracuda SSL VPN section.
- Enter the six digit verification code (e.g.,
909478
) on the Barracuda SSL VPN login screen, and then click Login before the verification code times out ().
You are now logged into your Barracuda SSL VPN.