Multi-Factor (MFA) and Two-Factor Authentication (2FA) for Stormshield SSL VPN
Last updated on March 21, 2025
MFA for Stormshield is an extra layer of security to ensure only the intended user is logging into the VPN. Stormshield MFA requires the user to go through both primary (login/password) and secondary (Mobile Push) authentication. This means that even if a cybercriminal knows a user’s password, they will not be able to access the VPN without completing the second step of authentication.
Rublon Multi-Factor Authentication (MFA) for Stormshield SSL VPN allows you to add an extra layer of security to your Stormshield logins. MFA for Stormshield is done using the Rublon Authentication Proxy.
Rublon MFA for Stormshield SSL VPN enables Multi-Factor Authentication (MFA) / Two-Factor Authentication (2FA) during VPN connections. If a user enters the correct username and password, they proceed to the secondary authentication method. If the user is unable to complete the extra method, Rublon will deny their access, stopping any potential intruder from gaining access.
Rublon Authentication Proxy is used for integration via the RADIUS and LDAP protocols.
Ensure you have properly configured Stormshield.
Ensure that you have properly set up your authentication source, that is an external Identity Provider (IdP) like FreeRADIUS, FreeIPA, OpenLDAP, or Microsoft Active Directory.
Depending on your preference, you can integrate Rublon MFA with Stormshield via RADIUS or LDAP protocol.
Note
If possible, integrate Rublon MFA via RADIUS instead of LDAP. Stormshield fully supports RADIUS servers for authentication and allows custom timeouts for RADIUS requests. While the default RADIUS timeout is only 3 seconds, you can increase it to 30 seconds. For more information, refer to the Rublon MFA for Stormshield using RADIUS documentation.
Integrate Stormshield with Rublon to introduce Multi-Factor Authentication (MFA) to your logins. You have to install and configure Rublon Authentication Proxy before configuring Rublon MFA for Stormshield using RADIUS.
Integrate Stormshield with Rublon to introduce Multi-Factor Authentication (MFA) to your logins. You have to install and configure Rublon Authentication Proxy before configuring Rublon MFA for Stormshield using LDAP(S).
If you encounter any issues with your Rublon integration, please contact Rublon Support.
