For details on cookie usage on our site, read our Privacy Policy
Using the PAN as a reverse proxy to protect web servers
- LIVEcommunity
- Discussions
- General Topics
- Using the PAN as a reverse proxy to protect web servers
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Printer Friendly Page
Using the PAN as a reverse proxy to protect web servers
- Mark as New
- Subscribe to RSS Feed
- Permalink
11-07-2019 08:45 AM
Hello All,
So I have a scenario I'd like to see what others have done. Keep in mind we already do IP whitlisting and have all our defenses up, i.e. Zone protection, Anti-virus, anti-spyware, vul protection, etc.
Scenario:
External users connecting to one of our web servers using multi factor auth. They have pin+otp plus an internal AD account they must authenticate with. Since they are a customer, they are not on our network and need to change their passwords per our domain policy.
I was looking at the form based auth and was wondering if anyone out there is using this and if they ran into any issues? Do the uses mind? Does it prompt them to change their passwords when they are expired? Does it allow them to setup their PIN for their OTP for first use? I know Global protect has this functionality, however we dont want them to have to VPN into us.
All thoughts are welcome!
Cheers!
- Global protect VPN user Pre-log with User & machine Cert and fall Back to AD server in GlobalProtect Discussions
- Global protect VPN disconnecting multiple times in GlobalProtect Discussions
- MS-SQL Issues with 8656-7766 Dynamic Update? Citrix-Director seems to have broken it in General Topics
- Register DNS between GP and Internal Network in General Topics
- Register DNS between GP and Internal Network in GlobalProtect Discussions
Show your appreciation!
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
