With Coslat 2FA, a second verification can be made by SMS for users who want to connect to the VPN. In this way, an additional measure will be taken against VPN passwords being stolen.
After the 2FA installation process is completed, the web interface is accessed with the received ip address. User name: admin, password: coslat as login.
Clicking on the Coslat text will start the wizard.
On the first screen that comes up, we select the language we want to use and continue by clicking the “Save” button.
In this screen, a password for MySQL service have to be defined and continued by clicking on the “Save” button.
We need to create interfaces where the system will respond to incoming requests. At this point, we need to add two ports for Radius Authentication and Accounting. We use port 1812 for Authentication and port 1813 for Accounting.
First, the Authentication interface is selected as an Interface Type and 1812 is written on the port text area.
Interface selection is performed by selecting Interfaces Type Authentication and click “Save” button.
Next, the Accounting interface is selected as an Interface Type and 1813 is written on the port text area and click “Save” button again.
Clicking the “Go Next Step” Button, it is proceeded to the next step.
On The Configure Client Page;
Client IP Address: VPN server ip address.
Client Shortname: A descriptive name for the VPN server.
Client Shared Secret: This is the password field required for communication between the VPN server and Coslat 2FA.(This Secret will also be defined by the VPN server.)
After saving the settings with the “Save” button, for the next step click “Go Next Step” button.
For sending SMS;
Provider settings must be done in order to send SMS to users. For this;
Select SMS Provider: If the SMS provider you use is available in the system, it can be selected from SMS provider drop down box.
SMS Request: IIf the service provider you use is not listed, the service provider API information is added. (You can contact BG-TEK support team about this and get help with API.)
SMS Username: SMS provider username (provided by the provider)
SMS Password: SMS provider password (provided by the provider)
Other information varies by SMS provider.
After entering the information, clicking the “Save” button, Coslat 2FA installation is completed and the device is expected to restart.
Adding a local user
After making database, interface and verification method settings, Coslat 2FA is ready to use with local users.
For adding user; Click Users -> + Add button.
Enter Username and password.
To be able to define mobile phones to the users we add;
Click User Phones -> + Add button.
Username: Username previously opened.
User GSM No: User’s mobile phone.
The settings on Coslat have been completed.