![]() ![]() Adding the GlobalProtect AppĪpplications > Applications > Add Application It’ll require you to scan a QR code with the Okta Verify app on a mobile phone. Next, head over to your organization’s URL () and log in with the credentials of a domain user. It doesn’t have to be a valid address though. Okta will not import domain users without an e-mail address. Make sure that Active Directory Domain users have an e-mail address. Import users and groups after it’s complete. Make sure that user is a member of the group “Domain Admins”. It’ll ask to install the AD-Agent and automatically create a new user named “OktaService”. Active Directory Agentįollow the wizard, it’s pretty straight forward. On top of that, push notifications take advantage of PKI (Public Key Infrastructure) which is a lot more secure than OTP’s.Īdd a new rule so that users are prompted for factor. Firewall configured with Active Directory authentication (User-ID)Įnable Okta Verify and Push notification as an alternative to manually typing an OTP (One-Time Password).Head over to to get your free account! Keep in mind that you’re restricted to just Palo Alto Networks apps. Now they offer a free subscription for those who are only interested in using the Palo Alto Networks apps. Previously you were limited to just a 30-day trial. Okta started offering MFA for free when using Palo Alto Networks applications such as GlobalProtect, CaptivePortal, Admin UI and even Active Directory. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |