How to ensure only the users with Pass-cookie are allowed to access from outside of the office network?

Question

Is it possible to set an access pass for a PC that cannot connect to the internal network?

Answer

It is possible to configure it using the following steps:

 1. (Administrator) Create an access policy group for access pass distribution users.
 2. (Administrator) Create access pass distribution users.
 3. (Administrator) Add access pass distribution conditions.
 4. (Administrator) Provide login information for access pass distribution users to users.
 5. (User) Log in as an access pass distribution user, and set the access pass cookie in the browser.

Detailed Procedure Explanation

Administrator's Tasks

1. Create an access policy group for access pass distribution users

[User] > [Access Policy Group] > [Add +] and register with the following settings.
"New Access Policy Group" screen
Access Pass APG.png

2. Create access pass distribution users

Create a user with any name. (Example: Username cookie)

When integrating with Active Directory: Create a user with any name on Active Directory and add it through synchronization.

If not integrating with Active Directory: Create a user in HENNGE Access Control.

After registering with HENNGE Access Control, set it in the policy created in step 1.
※ Account creation in Google Workspace / Microsoft 365 is not necessary.

3. Add access pass distribution conditions

Edit the access pass issuance conditions from [System] > [Domain Settings] > [Other Settings] and add login_name:username (*).
(*) Enter the user name created in step 2.
If the username is cookie, it will be login_name:cookie.

[Example]

Before: ip4:<IP Address>
After: ip4:<IP Address> or login_name:username (*)

4. Provide login information of access pass distribution users to users

- Login name and password of the user created in step 2
- OTP token of the user created in step 2 (*)
(*) It is the value of "Emergency OTP Token" in the user edit screen.
Initially, 5 tokens are automatically set. You can also add more with [Add New].

User Tasks

After completing all steps 1 to 4 of "Administrator Tasks," perform the following operations as a user.

5. Log in as an access pass distribution user and set the access pass in the browser

5.1. Log in as an access pass distribution user
URL: Check the HENNGE One login information provided to the person in charge.
ID / Password / OTP: Information provided by the administrator in step 4.

5.2. After successful login, log out once

5.3. Access again and log in with your own ID / password

          
Was this article helpful?