NetMotion Mobility - Add app

During this task we will add the NetMotion Mobility gateway app and then assign the app to groups.

Before you begin

  • Ensure that you have the required common UDP port and secret key values available.

Add app

  1. In Okta, navigate to Applications > Applications> Add Application, search for NetMotion Mobility (RADIUS), and then click Add Application.
  2. Enter a unique name.
  3. In the Sign On tab provide the following:

    Field Value

    Authentication

    Checked.

    UDP Port Required. Typically 1812. Enter the RADIUS application UDP port.
    Secret Key

    Required. Enter the secret key that will be used to encrypt and decrypt the user password.
    Must be identical to that used during the gateway configuration.

    Application username format From the drop-down, select the appropriate username format.
    Important Note

    Important

    The UDP Port and Secret key must match between the app, and the client gateway.

  4. Click Done when complete.

Enable EAP-GTC

  1. Select the Sign On tab.
  2. Scroll to the Authentication Protocol section.
  3. Configure the following:
    FieldValue
    Use EAP-TTC authenticationEnabled
    CertificateUpload the server certificate chain and private key used to encrypt the TLS communication between the Okta RADIUS agent and the NetMotion VPN client.
    Supported formats: .pem, .pfx, and .p12.
    PasswordOptional. Enter the password used to protect the certificate and key.
    TLS version.Select the appropriate TLS version.

  4. [Optional] Disable Inline Enrollment.
    Inline enrollment, enabled by default, allows users to enroll for Okta Verify, SMS and Voice using RADIUS.
  1. Ensure the Assignments tab is selected.
  2. Click Assign and select Assign to Groups.

  3. Locate the group you want to assign the application to and click Assign.
  4. Complete the fields in the Assign NetMotion Mobility (RADIUS) to Groups dialog.
  5. Click Save and go back.

    The Assigned button for the group is disabled to indicate the application is assigned to the group.

  6. Optional. Repeat steps 5, 6, and 7 to assign the application to additional groups.
  7. Click Done.
Tip

Tip

For additional information, including guidance on advanced authentication and adaptive multifactor configuration options, see Using the Okta RADIUS App.

 

Important Note

Important

Enabling EAP-GTC requires that the RADIUS agent be restarted.
Once complete, restart the RADIUS agent.