4.7.2.2. Deployment Steps

To ensure the successful deployment of the specific use case, it is crucial to meticulously follow the steps we provide. Please note that these steps may vary based on your unique requirements and needs.

Below, you will find a detailed breakdown of both mandatory and optional steps. Remember, the applicability of these steps will depend on your specific case.

Architecture

• Architecture: The first step is the deployment of the nodes needed for this use case. Here we will find the necessary information related to the architecture of the use case. You can find a detailed explanation of the deployment of each of the nodes in Deployment and basic configuration

Node Configuration

• Node Configuration: This section details the steps necessary to configure the nodes that constitute the backend of the use case. These include ON Sensor, ON Core, and ON VPNGW.

Portal configuration

• VPN Menu Configuration: This section is dedicated setting up and starting the VPN service by configuring the necessary flows in the Administration Portal.

• General Menu Configuration: The second part of the Portal Configuration is dedicated to VPN configurations followed by the remaining 2SRA configurations that take place in the General menu.

Optional:

• Wireguard VPN using SAML: The use of Wireguard as a VPN service allows us to use SAML as the authentication backend through the OpenNAC Enterprise captive portal. For this, it will be necessary to configure this section to deploy and configure the captive portal.

• OTP Configuration: To enhance the security of the use case, you can add an extra layer of protection by using a One-Time Password (OTP) or Two-Factor Authentication (2FA) system. This system requires entering a unique password when connecting to the VPN.

End User Guide

• End User Guide: This section provides all the necessary information for end users of the 2SRA module. It shows how to set up your environment to establish a secure VPN connection to the corporate network through the OpenNAC Agent using the 2FA.

Monitoring

• Monitoring: This section shows how the data is being ingested and saved in the Operate view of the Administration Portal and in the ON Analytics section.

Troubleshooting

• Troubleshooting: When testing the use case for the first time after deployment, you may encounter certain issues. In this section, you will learn how to analyze these problems and fix them. You can find other troubleshooting topics in Platform Administration > Troubleshooting guide.