Two-Factor Authentication

Activating Two-Factor Authentication

1. Access the Harmony SASE Administrator Portal and click Settings > Identity Providers.

2. For the Identity Provider for which you want to activate 2FA, click Turn On for Two-Factor Authentication.

   

3. In the Choose 2FA type section, select the authentication type:

   

   • Google Authenticator

   • Duo Security

     • Enter the details in the Integration key, API hostname, and Secret key fields. See Configuring Duo Security for Two-Factor Authentication.

   • SMS/Push Notification

4. In the Authentication requests section, select the frequency of authentication:

   • Every Login

   • Once in 30 days

5. Click Done.

Configuring Duo Security for Two-Factor Authentication

1. Log in to the Duo Security Management Portal.

2. Go to Applications and click Protect an Application.

   

3. Search for Web SDK and click Protect this Application for Web SDK.

   

   The system creates the application.

4. In the Details section, copy the Client ID, Client secret, and API hostname.

   

5. (Optional) Scroll down to Settings and in the Name field, change the name of the application.

   

Deactivating Two-Factor Authentication

1. Access the Harmony SASE Administrator Portal and click Settings > Identity Providers.

2. For the Identity Provider for which you want to deactivate 2FA, click Turn Off for Two-Factor Authentication.

   

3. Click Deactivate in the confirmation pop-up that appears.