Cisco Firepower Integration
Hijacking user credentials poses a risk of unauthorized access to accounts. Nowadays, providing additional security steps to solve such problems is possible with the SecTrail verification server.
You can find information about providing two-factor authentication for SecTrail and Cisco Firepower via one-time password (SMS, email, SoftOTP) in this document.
Integration of SecTrail with Cisco Firepower;
- The user enters their credentials on the login screen of Cisco Firepower.
- The information (username and password) is sent to the SecTrail server as a RADIUS request via Cisco Firepower.
- SecTrail performs user authentication (via Active Directory, Database, etc.) and forwards the RADIUS response to Cisco Firepower. If the authentication is successful, SecTrail sends a one-time password to the address obtained from the user information in the database (AD, LDAP, Local) via SMS or email. An external SMS Proxy or Email server is used during the sending phase. In the case of using software key (SoftOTP), the password is generated via SecTrail Authentic
- "If the response is successful, Cisco Firepower presents the user with a second screen."
- The user enters the one-time password generated by SMS, E-Mail or SecTrail Authenticator mobile application transmitted by SecTrail,
- Cisco Firepower transmits the one-time password to SecTrail as a RADIUS request,
- "SecTrail verifies the one-time password and sends the response to Cisco Firepower,"
- If the response is successful, Cisco Firepower grants access to the user and starts the session.
Mobile Application Support
If you want to use SoftOTP, you can ensure your security through the SecTrail Authenticator mobile application.
You can download the SecTrail Authenticator application to your mobile device from the Apple App Store or Google Play Store.