AuthPoint Deployment Guide

This help topic shows you how to set up and fully deploy AuthPoint, WatchGuard's multi-factor authentication solution. For a shorter overview of how to get started and test AuthPoint, see Quick Start — Set Up AuthPoint.

AuthPoint is managed from within WatchGuard Cloud. For more information about WatchGuard Cloud, see About WatchGuard Cloud.

In AuthPoint, resources are the applications and services that you want to connect to. External identities connect to LDAP user databases to get user account information and validate passwords.

When you set up AuthPoint, we recommend that you first connect AuthPoint to your firewall and LDAP database. Download and install the AuthPoint Gateway that connects them with AuthPoint, then add a RADIUS client resource for your firewall and an external identity for your LDAP database.

Next, you can add SAML resources for the applications that your users connect to and assign access policies for those resources to your user groups.

When everything is set up and ready to go, sync users from your LDAP database to AuthPoint.

You have now added your resources to AuthPoint and defined access policies for those resources, and you have synced your users. Before your users can authenticate with AuthPoint, they must install the AuthPoint app on their mobile devices and activate their WatchGuard token.

A token is something that is used to identify you and associate you with a device, like a digital signature or fingerprint. It is used in addition to, or in place of, a password when you log in to a protected resource.

You activate a token on a device that is used for authentication, such as a mobile phone. This device is then used to gain access to protected resources that require multi-factor authentication.

For more information, see Activate a Software Token.

See Also

Quick Start — Set Up AuthPoint

About AuthPoint

About the AuthPoint Mobile App

Configure MFA

About Authentication

User Management

AuthPoint Integration Guides