Imperva Cyber Community

communities_1.jpg
 View Only
  • 1.  MFA Integration using RADIUS when login into the WAF gateway MX

    Posted 08-16-2024 07:41
    Edited by Sasith Senanayake 08-16-2024 07:57

    Hey Impervians,

    Can anyone let me know if we have the capability to configure MFA based authentication such as authenticator based, SMS or email code based when logging into the on-premise WAF. Can this be done by integrating with a RADIUS Server. If so will the radius server push these authentication mechanisms or will the on-prem WAF push it such as a page to enter an OTP code.

    If the on-prem WAF does not support this can it be done through an integration with an IAM?

    If any of these use cases are possible please guide me on how it can be done or if possible share any resources which you might have on this topic.


    #On-PremisesWAF(formerlySecuresphere)

    ------------------------------
    Sasith Senanayake
    Associate Network and Security Engineer
    Connex Information Technologies (Pvt) Ltd.
    Colombo
    ------------------------------



  • 2.  RE: MFA Integration using RADIUS when login into the WAF gateway MX

    Posted 08-16-2024 10:15

    Hello Sasith,

    Thank you for the post, unfortunately MFA for ImpervaWAF is not supported. CLI RADIUS authentication, supports only PAP. SecureSphere MX RADIUS authentication supports PAP, CHAP, and MS-CHAP. Refer: https://docs.imperva.com/bundle/v14.7-waf-administration-guide/page/7301.htm



    ------------------------------
    Syed Noor Fazal
    Product Support Engineer
    ------------------------------



  • 3.  RE: MFA Integration using RADIUS when login into the WAF gateway MX

    Posted 08-26-2024 04:49

    Hi Syed,

    Thank you for the clarification.



    ------------------------------
    Sasith Senanayake
    Associate Network and Security Engineer
    Connex Information Technologies (Pvt) Ltd.
    Colombo
    ------------------------------