How to setup SonicWall to work with YubiKey TOTP

Description

This article covers configuration steps for SonicOS firewalls to work with YubiKey TOTP.

Resolution for SonicOS 7.X

This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.

  1. Login to SonicWall Firewall UI and navigate to DEVICE | Users | Local Users and Groups.
  2.  Edit User/Group and select One Time Password Method to TOTP.
  3. Click Save.

     Image


On Client (Desktop/Mobile) Device:

  1. Login to NGFW via Web-Portal/SSL-VPN Portal/NX Client with a username and password.
  2. Observe user One Time Password page.

    Image

  3. Click on text_code link and copy the code.

    Image

  4. Install Yubico Authenticator App from store.
  5. Open Yubico Authenticator App.
  6. Insert YubiKey into the client device using USB/Type-C/NFC port.
  7. Verify the inserted YubiKey details in Yubico Authenticator App.

    Image

  8. Navigate to Yubico Authenticator screen.

    Image

  9. Click on Add Account.

    Image
  10. Add an account providing Issuer, Account name and Secret key. 

    NOTE: The secret key should be same as the one copied in step #3 above.

    Image

  11. Observe that account gets added successfully and a TOTP gets displayed.

    Image

  12. Now, use this TOTP to authenticate against SonicWall firewall.

    Image

See also:

Resolution for SonicOS 6.5

This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.

  1. Login to SonicWall Firewall UI and navigate to DEVICE | Users | Local Users and Groups.
  2.  Edit User/Group and select One Time Password Method to TOTP.
  3. Click Save.
    Image

On Client (Desktop/Mobile) Device:

  1. Login to NGFW via Web-Portal/SSL-VPN Portal/NX Client with a username and password.
  2. Observe user One Time Password page.

    Image

  3. Click on text_code link and copy the code.

    Image

  4. Install Yubico Authenticator App from store.
  5. Open Yubico Authenticator App.
  6. Insert YubiKey into the client device using USB/Type-C/NFC port.
  7. Verify the inserted YubiKey details in Yubico Authenticator App.

    Image

  8. Navigate to Yubico Authenticator screen.

    Image

  9. Click on Add Account.

    Image
  10. Add an account providing Issuer, Account name and Secret key. 

    NOTE: The secret key should be same as the one copied in step #3 above.

    Image

  11. Observe that account gets added successfully and a TOTP gets displayed.

    Image

  12. Now, use this TOTP to authenticate against SonicWall firewall.

    Image

See also:

Related Articles

  • SonicOS 8.1.0 FAQ
    Read More
  • SonicWall GEN8 TZs and GEN8 NSas Settings Migration
    Read More
  • Getting started with SonicWall firewalls
    Read More

Categories

Firewalls
NSa Series
User Login
Firewalls
SonicWall SuperMassive 9000 Series
User Login
Firewalls
SonicWall SuperMassive E10000 Series
User Login
Firewalls
TZ Series
User Login
not finding your answers?
Ask the Community