I am looking for a two factor authentiction solution for PAN firewalls (Global Protect) with Gemalto tokens.Integration with two factor Gemalto token authentication for IPSec VPN and Global Protect.
For using smart card, you need to create a client certificate profile on the firewall. The client certificate profile will consist the Root CA certificate which will be the issuer of the Server and the Client certificate. Please make sure to check that both the server certificate and the client certificate ( certificate in the GEMALTO smart card) have the same issuer (root). Once this is done, go ahead and add the server certificate and client certificate profile in both portal and gateway configuration. Leave the client certificate as none as the client certificate will be sent by the GP client to the firewall when the smart card is inserted into the PC by the end user.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!