Enable Multi-Factor Authentication for VMware Horizon UAG with Thales / Gemalto Safenet

This post was originally published on this site

Background

I had a requirement to implement Multi-Factor Authentication for external access to a Horizon View environment. External connections are already handled by a VMware Universal Access Gateway so it is a pretty easy task to include and enable the integration with a radius service to enable MFA. This guide shows how to integrate with Gemalto’s Safenet Trusted Access service.

 

Implementation Step 1 – Safenet Trusted Access setup

I will assume at this point you have some familiarity with Gemalto’s SAS / STA platform and that you have already synchronised user accounts from Active Directory. Gemalto’s setup guide is quite out of date at this point, but it gives you the information required for setup and to enable MFA on a View connection server. The guide can be found here.

First off, we need to add an authentication node to Gemalto STA. This is essentially a public IP address that is allowed to authenticate against the Gemalto radius servers.

What the above screenshot shows is how to define an auth node. Enter a name for the service, the public

Want to learn more? Read the source post!