Free Version

With Coslat 2FA, a second verification can be made by SMS for users who want to connect to the VPN. In this way, an additional measure will be taken against VPN passwords being stolen.

After the 2FA installation process is completed, the web interface is accessed with the received ip address. User name: admin, password: coslat as login.

Coslat 2fa

Clicking on the Coslat text will start the wizard.

Coslat 2fa

On the first screen that comes up, we select the language we want to use and continue by clicking the “Save” button.

Coslat 2fa

In this screen, a password for MySQL service have to be defined and continued by clicking on the “Save” button.

Coslat 2fa

Interfaces Selection

We need to create interfaces where the system will respond to incoming requests. At this point, we need to add two ports for Radius Authentication and Accounting. We use port 1812 for Authentication and port 1813 for Accounting.

First, the Authentication interface is selected as an Interface Type and 1812 is written on the port text area.

Interface selection is performed by selecting Interfaces Type Authentication and click “Save” button.

Coslat 2fa

Next, the Accounting interface is selected as an Interface Type and 1813 is written on the port text area and click “Save” button again.

Coslat 2fa

Clicking the “Go Next Step” Button, it is proceeded to the next step.

On The Configure Client Page;

Client IP Address: VPN server ip address.

Client Shortname: A descriptive name for the VPN server.

Client Shared Secret: This is the password field required for communication between the VPN server and Coslat 2FA.(This Secret will also be defined by the VPN server.)

Coslat 2fa

After saving the settings with the “Save” button, for the next step click “Go Next Step” button.

For sending SMS;

Provider settings must be done in order to send SMS to users. For this;

Select SMS Provider: If the SMS provider you use is available in the system, it can be selected from SMS provider drop down box.

SMS Request: IIf the service provider you use is not listed, the service provider API information is added. (You can contact BG-TEK support team about this and get help with API.)

SMS Username: SMS provider username (provided by the provider)

SMS Password: SMS provider password (provided by the provider)

Other information varies by SMS provider.

Coslat 2fa

After entering the information, clicking the “Save” button, Coslat 2FA installation is completed and the device is expected to restart.

Coslat 2fa

Adding a local user

After making database, interface and verification method settings, Coslat 2FA is ready to use with local users.

For adding user; Click Users -> + Add button.

Coslat 2fa

Enter Username and password.

Coslat 2fa

To be able to define mobile phones to the users we add;

Click User Phones -> + Add button.

Username: Username previously opened.

User GSM No: User’s mobile phone.

Coslat 2fa

The settings on Coslat have been completed.