This article will provide you the necessary steps to gain access to your corporate network using the Sonicwall Mobile Connect NetExtender SSL VPN application. <–Click the link if you need to download the application and install on your computer.
Setting Up the Authenticator
1. Download and install Microsoft Authenticator App or any other App that supports TOTP (Time-based One-Time Password) from your mobile phone.
NOTE: Trying to log in with SSL VPN client, NetExtender, would result in an error: “You need to bind your App for Time based One-Time password. Please go to the portal to login and bind it.” This is referring to the SSLVPN Virtual Office Portal (explained in the next step)
2. Log into SSL VPN portal, aka. the Virtual Office. Remote clients have to login to the virtual office portal by typing firewall public IP followed by port number 4433 in the browser URL (https://myfirewall:4433), to bind the Google Authenticator App
3. Post entering their username & password, they will be prompted with a QR code and an Emergency Scratch code
NOTE: Please store the Emergency Scratch Code as it is the only way to login if the mobile device is lost or reset.
4. Open the Google Authenticator App or Duo on the Mobile phone, then click on Begin
5. Select Scan a barcode to scan QR code
6. Once the QR code is scanned, the App will provide a 6-digit One-Time Password (OTP), then click Add Account. SNWL is added
7. Enter the OTP beside the 2FA Code option on the pop-up window with the QR code
8. Open NetExtender
- Enter Active Directory credentials. Then, a window will pop up asking to enter an authentication code (password)
- On mobile phone, open Google Authenticator, and go to SNWL account to get one-time password (OTP)
- On the Authentication window, enter OTP in the Password field, and click OK to establish the SSL VPN connection
Once you have completed all of the above mentioned steps you will be granted access to the internal corporate network.