KB40172 - Google Authenticator integration with Pulse Connect Secure

This article provides step by step instructions how to configure Google Authenticator has a secondary authentication server on the Pulse Connect Secure devices.

 

Starting in 8.2R5, this release supports Time based One-Time Password (TOTP) authentication by using the Google Authenticator algorithm for generating shared secret keys and tokens. User can deploy Google Authenticator as a multi-factor authenticator within PCS.  To configure TOTP authentication server, please perform the following steps:

1. Sign-in to the PCS admin console.
2. Navigate to Authentication > Auth. Server.
3. From the drop-down menu, select Time based One-Time Password (TOTP) Server.
4. Click New Server.
5. In the Name field, enter a friendly name.
6. Click Save Changes.

7. Navigate to the applicable User realm.
8. Click the checkbox for Enable additional authentication server.
9. From the authentication#2 drop-down, select the friendly name create for the TOTP server.
10. Click Save Changes.
11. Once the end user has authenticated to the PCS device, a prompt for the QR code will appear.

12. ​From the end user's smartphone, open Google Authenticator and click the + in the upper right hand corner.

13. Click Scan barcode.

14. Using the camera, scan the QR code.
15. Once this is completed, the token code will be available in the Google Authenticator app.