Logon to  the NetMotion Mobility Server


Click on Configure>Authetication Settings






Option - You may set up a separate authentication profile or use the global settings.


To create a separate Profile simply click New on the top left and give the profile a name, at the prompt.

You can then select the profile you wish to use, here.









There are three settings that need to be applied.  The settings are found in the middle pane.

SectionOption
AuthenticationProtocol
RADIUS: User AuthenticationRetransmit Interval
RADIUS: User AuthenticationServers







Click on Protocol 


Select RADIUS - EAP (PEAP and EAP-TLS)






Click Save.


Repeat to add extra steps.


I have added two steps; Static Password and One-Time Password



 





Create an Application:


Authentication> Applications





Click on  on the top right.



In the new Application window, please enter the following information:

OptionValue
Name:Enter a friendly name
Realm:Select your Realm
Logon Procedure:

Select the Logon Procedure you had created in the previous step

Click: Save





Bind the Application to a RADIUS Server Agent



Select the drop-down menu corresponding to the Application you will be using and click on Agents.







Tick the box of the Radius Server you will be using and click Save below.






Server Settings

Add RADIUS Server

  1. In the main menu, “Configure | Authentication Settings ”
  2. Select "Global Authentication Settings" in the left pane
  3. Select “RADIUS: User Authentication - Servers” in the middle pane



  4. Click “Add” button in the right pane to add the DualShield Radius Server



  5. Enter the Dualshield Radius Server IP address, Port and Shared secret.
  6. Click "OK" button to save it

Set User Authentication Protocol to RADIUS EAP

  1. Select “Authentication: Protocol” in the middle pane



  2. Select “RADIUS - EAP (PEAP and EAP-TLS)”



  3. Click “Apply” to save it

Set RADIUS Retransmit Interval

  1. Select "RADIUS: User Authentication | Retransmit Interval" setting. 

  2. Enter an interval long enough for a user’s mobile device to receive and respond to authentication requests. Recommended: at least 40000 milliseconds.

  3. Click Apply.

Client Settings

Enable Always Prompt for User Credentials

  1. In the main menu, Select “Configure | Client Settings”
  2. Select "Global Client Settings" in the left pane
  3. Select “Logon | Always Prompt for User Credentials” in the middle pane



  4. Enable "Always prompt when connecting



  5. Click “Apply” to save it 

Set Connecting Dialog Duration

  1. Select "Connecting Dialog Duration" in the middle pane



  2. Change Wait time to 120 seconds



  3. Click "Apply" to save it