• NetExtender for Secure Mobile Access 10.2
• NetExtender Overview
  • What is NetExtender
  • NetExtender Concepts
    • Stand-Alone Client
    • NetExtender Supports Network logon (PreLogon)
    • NetExtender Supports Always On VPN (AOV)
    • Multiple Ranges and Routes
    • IP Address User Segmentation
    • Client Routes
    • Tunnel All Mode
    • Proxy Configuration
  • Supported Platforms
    • NetExtender Client Versions
    • Supported Clients
    • Supported SonicWall Appliances
  • What's New in NetExtender
  • Feature Support in NetExtender
  • Deprecated Feature
• Configuring NetExtender for Windows Client
  • Prerequisites
  • Support Enhancement
  • Installing NetExtender on Windows
  • Enabling Network Logon (PreLogon) Feature on NetExtender
  • Enabling Always-On VPN Connection
  • Installing NetExtender through Microsoft Installer
  • Auto-Run NetExtender
• Configuring NetExtender for Linux Client
  • Prerequisites
  • Installing NetExtender on Linux
• Using NetExtender
  • Adding Connection Profile Management
  • Editing Connection Profile Management
  • Connect with Connection Profile
  • Connect with Specific Protocol
  • Multiple Factor Authentication
    • TOTP Authentication
    • Client Certificate Authentication
    • Smart Card Authentication
    • DUO Security Authentication Support for NetExtender
      • DUO Security Authentication with NetExtender Windows
      • DUO Security Authentication with NetExtender Linux
  • Configuring NetExtender Properties
    • NetExtender Properties for Windows Client
      • Configuring Settings
      • Configuring Connection Settings
      • Configuring Connection Script
      • Configuring Proxy
      • Configuring Packet Capture
    • NetExtender Properties for Linux Client
      • Configuring Proxy
      • Configuring Certificate Settings
      • Configuring Settings
  • Viewing the NetExtender Log
  • Disconnecting NetExtender
  • Upgrading NetExtender
  • Uninstalling NetExtender
• Using the NetExtender Command Line Interface
  • Launching the NetExtender CLI for Windows
  • Launching the NetExtender CLI for Linux
• NetExtender Troubleshooting
• NetExtender FAQ
• Use Case
  • Adding Connection Profile
  • Editing Connection Profile
  • OTP Authentication
  • Certificate Authentication
  • Authentication with Smart Card
• SonicWall Support
  • About This Document

Client Certificate Authentication

The NetExtender provides client certificate authentication for Windows and Linux clients.

Prerequisites

• The administrator should add the CA domain.

• The user should add a connection to this CA domain.

• The user should install the client certificate before connecting.

• The user should able to connect using this connection.

To enable the OTP authentication on NetExtender

1. On the SMA 100 appliance, navigate to System > Certificate. The Administrator should add certificate CA under the Additional CA certificates section and restart SMA appliance.

   

2. On the SMA 100 appliance, navigate to Portals > Domains. the Administrator should add CA domain and select the specific CA certificate.

   

3. The user should install the required client certificate signed by the specific CA.

4. The user should create a connection to this domain and click Save.

   

5. Connect to this domain.

   1. If the user has multiple CAs in the domain, NetExtender shows a popup select dialog. After clicking the info button, the user can view details.

      

   2. After selecting a specific client certificate, the certificate is saved to the connection, user can click edit connection button to view the selected certificate.

      

6. The user can connect with this connection.