Adding MFA to Astaro Security Gateway to authenticate WebAdmin sessions

Note: This integration does not support the use of Push. You will need to use OTP.


Setting up MFA for RADIUS is a requirement for this integration. Please see this article for more information.

  1. Sign into your Astaro Security Gateway WebAdmin console as an administrator.
  2. Click on Users, then Authentication, then the ‘Servers’ tab. 
  3. Click New Server.
  4. Select RADIUS from the Backend dropdown.
  5. Click the plus sign beside the Server field and fill in the required server information in the ‘Add Network Definition’ box. 
  6. Set your RADIUS server port and shared secret, and optionally test the RADIUS server connection with MFA.

  7. Click Save
  8. If a group does not already exist for RADIUS users, click Users then Groups, and click New Group. Give the group a name, set the Group Type to Backend membership, and set the Backend to RADIUS, then click Save.
  9. Click Management then WebAdmin Settings and click on the General tab.
  10. In the WebAdmin access configuration section, click on the folder icon in the Allowed Administrators box to load the available users and groups.  
  11. Drag your RADIUS Users group into the Allowed Administrators box. 
    Note: We strongly recommend leaving one local user configured with a strong password so that you can still gain access to the WebAdmin interface in case either the RADIUS server or the AuthAnvil Two Factor Auth server are not available.
  12. Click Apply.
  13. Log out and re-authenticate to the WebAdmin interface using MFA.
Was this article helpful?
0 out of 0 found this helpful
Have more questions? Contact us