To self-enroll for multi-factor authentication using Time-Based One-Time Passwords (TOTP) as a Remote Access user, log into the TOTP web portal, using the SSL VPN service listen IP address or URL that has been configured by the admin: https://(IP of the SSL VPN service)/portal/totp.html
. Use the app of your choice that supports the TOTP protocol (e.g., Google Authenticator, Microsoft Authenticator, 1password, etc.) to enroll your account using either the QR code generated by the app or manually with the secret key. Multi-Factor Authentication using TOTP requires an Advanced Remote Access subscription. For more information, see Subscriptions.
Self-Enroll as a User
- Log into the TOTP web portal . The Time-based OTP > Enrollment window opens.
Scan or click the QR code or enter the Secret Key into your TOTP app or plugin of choice.
Enter the Verification Code generated by the app in the provided field.
- Click on the check mark in the top-right corner to complete the enrollment.
Your account is now linked with Time-Based One-Time Password Authentication on the CloudGen Firewall. You can now use the 6-digit TOTP codes for the SSL VPN web portal, CudaLaunch, and the Barracuda VPN Client for Windows.
Self-Service as a User
- Log into the TOTP web portal. The Time-based OTP window opens.
- In the Time-based OTP pop-up window, enter your verification code.
- Click Continue to start your self-service session.
Logging in Using Backup Codes
As soon as you are enrolled for multi-factor authentication using Time-based One-time Passwords, you can access backup codes that you can also use to log into the SSL VPN web portal or CudaLaunch, or to establish VPN connections using the Barracuda VPN Client for Windows. Backup can be used to access your account in place of a Time-based OTP verification code.
To access the backup codes:
- Log into the TOTP web portal. The Time-based OTP window opens.
- In the left menu, select Backup Codes.
- Use the codes on the right side of the window to log in . To generate new codes, click Generate New Backup Codes.
Use TOTP to Authenticate
Example: Barracuda VPN Client for Windows
- Start the Barracuda VPN Client for Windows.
- Select a VPN profile that has One-time Password (OTP) enabled. For more information, see How to Create VPN Profiles.
- Enter User Name, User Password, and the One-time Password generated by your TOTP/Authenticator app.
- Click Connect.