Some network environments might require additional security levels to authenticate users when they access specific high-risk SSL VPN resources. Barracuda SSL VPN provides risk based authentication for Web Forwards, applications and SSL tunnels. Each launch of these resource types can be protected by PIN, password or Google Authenticator authentication.
Step 1. Configure the additional security prompt
Configure risk based authentication for an existing Web Forward, application or SSL tunnel, depending on your requirements.
- Open the RESOURCES tab.
- Edit the resource you want to configure risk based authentication for.
- In the Details section, select an option from the Additional Security Prompt list:
- If you want users to enter a PIN, select PIN.
- If you want users to enter a password, select Password.
If you want users to login via Google Authenticator, select Google Auth verification code.
- Click Save Changes.
The configured resource is now protected by PIN, password or Google Authenticator authentication, which is indicated by a blue key icon next to the entry in the resource list.
The protected resource is also marked with a blue key icon on the user´s My Resources page.
Step 2. Launch the protected resource
To use risk based authentication when logged into the Barracuda SSL VPN interface,
- Log into the SSL VPN interface as the user.
- Select the protected resource.
- In the upcoming security prompt, enter the PIN, password or Google Auth verification code.
- Launch the resource.