Two-factor authentication of a CPE device

Two-factor authentication is used to securely register a CPE device. When two-factor authentication is enabled, a security key is written to the orchestrator's database, which you must manually enter on the device. For successful registration, the two security keys must match.

To set up two-factor authentication on a CPE device:

1. In the menu, go to the SD-WAN section.

   By default, the CPE subsection is displayed with a table of CPE devices.

2. Click the CPE device.

   The settings area is displayed in the lower part of the page. You can expand the settings area to fill the entire page by clicking the expand button .

3. Select the Activation tab.

   Two-factor authentication settings of the CPE device are displayed.

4. In the Two-factor authentication drop-down list, select one of the following values:
   • Enabled
   • Disabled (selected by default)
5. If you enabled two-factor authentication, click Generate under the Token field to generate a security key.
6. In the upper part of the settings area, click Save to save the configuration of the CPE device.
7. Enter the generated security key on the CPE device in the /etc/config/sdwan folder.

Page top