NETGEAR FVS336Gv3 Router Manual PDF (Setup & Configuration Guide)

Page 191 / 203 Scroll up to view Page 186 - 190

Appendix C:

Two Factor Authentication

|

191

ProSafe Dual WAN Gigabit Firewall with SSL & IPsec VPN FVS336Gv2 Reference Manual

•

No need to replace existing hardware

. Two-Factor Authentication can be added to

existing NETGEAR products through via firmware upgrade.

•

Quick to deploy and manage

. The WiKID solution integrates seamlessly with the

NETGEAR SSL and network storage products.

•

Proven regulatory compliance

. Two-Factor Authentication has been used as a

mandatory authentication process for many corporations and enterprises worldwide.

What is Two-Factor Authentication

Two-factor authentication is a new security solution that enhances and strengthens security

by implementing multiple factors to the authentication process that challenge and confirm the

users identities before they can gain access to the network. There are several factors that are

used to validate the users to make that you are who you said you are. These factors are:

•

Something you know—for example, your password or your PIN.

•

Something you have—for example, a token with generated passcode that is either 6 to 8

digits in length.

•

Something you are—for example, biometrics such as fingerprints or retinal.

This appendix focuses and discusses only the first two factors, something you know and

something you have. This new security method can be viewed as a two-tiered authentication

approach because it typically relies on what you know and what you have. A common

example of two-factor authentication is a bank (ATM) card that has been issued by a bank

institute:

•

The PIN to access your account is “

something you know

”

•

The ATM card is “

something you have

”

You must have both of these factors to gain access to your bank account. Similar to the ATM

card, access to the corporate networks and data can also be strengthen using combination of

the multiple factors such as a PIN and a token (hardware or software) to validate the users

and reduce the incidence of online identity theft.

NETGEAR Two-Factor Authentication Solutions

NETGEAR has implemented 2 Two-Factor Authentication solutions from WiKID. WiKID is the

software-based token solution. So instead of using only Windows Active Directory or LDAP

as the authentication server, administrators now have the option to use WiKID to perform

Two-Factor Authentication on NETGEAR SSL and network storage products.

The WiKID solution is based on a request-response architecture where a one-time passcode

(OTP), that is time-synchronized with the authentication server, is generated and sent to the

user after the validity of a user credential has been confirmed by the server.

The request-response architecture is capable of self-service initialization by end-users,

dramatically reducing implementation and maintenance costs. Here is an example of how

WiKID works.

Page 192 / 203

192

|

Appendix C:

Two Factor Authentication

ProSafe Dual WAN Gigabit Firewall with SSL & IPsec VPN FVS336Gv2 Reference Manual

1.

The user launches the WiKID token

software, enter the PIN that has been

given to them (

something they know

)

and then press “continue” to receive the

OTP from the WiKID authentication

server:

2.

A one-time passcode (

something they

have

) is generated for this user.

Note:

The one-time passcode is time

synchronized to the authentication

server so that the OTP can only be

used once and must be used before the

expiration time. If a user does not use

this passcode before it is expired, the

user must go through the request

process again to generate a new OTP.

3.

The user then proceeds to the Two-Factor Authentication login screen and enters the

generated one-time passcode as the login password.

Page 193 / 203

Appendix D:

Related Documents

D

This appendix provides links to reference documents you can use to gain a more complete

understanding of the technologies used in your NETGEAR product.

Document

Link

TCP/IP Networking Basics

http://documentation.netgear.com/reference/enu/tcpip/index.htm

Wireless Networking Basics

http://documentation.netgear.com/reference/enu/wireless/index.htm

Preparing Your Network

http://documentation.netgear.com/reference/enu/wsdhcp/index.htm

Virtual Private Networking

Basics

http://documentation.netgear.com/reference/enu/vpn/index.htm

Glossary

http://documentation.netgear.com/reference/enu/glossary/index.htm

Page 194 / 203

Appendix E:

Notification of Compliance

|

194

Notification of Compliance

E

Federal Communications Commission (FCC) Compliance Notice: Radio Frequency

Notice

This equipment has been tested and found to comply with the limits for a Class B digital device, pursuant to

part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a

residential installation. This equipment generates, uses, and can radiate radio frequency energy and, if not installed

and used in accordance with the instructions, may cause harmful interference to radio communications. However,

there is no guarantee that interference will not occur in a particular installation. If this equipment does cause harmful

interference to radio or television reception, which can be determined by turning the equipment off and on, the user is

encouraged to try to correct the interference by one or more of the following measures:

•

Reorient or relocate the receiving antenna.

•

Increase the separation between the equipment and receiver.

•

Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.

•

Consult the dealer or an experienced radio/TV technician for help.

EU Regulatory Compliance Statement

The ProSafe Dual WAN Gigabit Firewall with SSL & IPsec VPN is compliant with the following EU Council Directives:

89/336/EEC and LVD 73/23/EEC. Compliance is verified by testing to the following standards: EN55022 Class B,

EN55024 and EN60950-1.

Bestätigung des Herstellers/Importeurs

Es wird hiermit bestätigt, daß das ProSafe Dual WAN Gigabit Firewall with SSL & IPsec VPN gemäß der im

BMPT-AmtsblVfg 243/1991 und Vfg 46/1992 aufgeführten Bestimmungen entstört ist. Das vorschriftsmäßige

Betreiben einiger Geräte (z.B. Testsender) kann jedoch gewissen Beschränkungen unterliegen. Lesen Sie dazu bitte

die Anmerkungen in der Betriebsanleitung.

Das Bundesamt für Zulassungen in der Telekommunikation wurde davon unterrichtet, daß dieses Gerät auf den Markt

gebracht wurde und es ist berechtigt, die Serie auf die Erfüllung der Vorschriften hin zu überprüfen.

Certificate of the Manufacturer/Importer

It is hereby certified that the ProSafe Dual WAN Gigabit Firewall with SSL & IPsec VPN has been suppressed

in accordance with the conditions set out in the BMPT-AmtsblVfg 243/1991 and Vfg 46/1992. The operation of some

equipment (for example, test transmitters) in accordance with the regulations may, however, be subject to certain

restrictions. Please refer to the notes in the operating instructions.

Federal Office for Telecommunications Approvals has been notified of the placing of this equipment on the market

and has been granted the right to test the series for compliance with the regulations.

Page 195 / 203

Appendix E:

Notification of Compliance

|

195

ProSafe Dual WAN Gigabit Firewall with SSL & IPsec VPN FVS336Gv2 Reference Manual

Voluntary Control Council for Interference (VCCI) Statement

This equipment is in the second category (information equipment to be used in a residential area or an adjacent area

thereto) and conforms to the standards set by the Voluntary Control Council for Interference by Data Processing

Equipment and Electronic Office Machines aimed at preventing radio interference in such residential areas.

When used near a radio or TV receiver, it may become the cause of radio interference.

Read instructions for correct handling.

Rate

Popular NETGEAR Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share