Start a Free Service or Free Trial 

Businessman working on Financial Report of corporate operations on computer screen with Balance Sheet, Income Statement, and key performance indicators

Few Simple Steps to Start the Service

  • Step 1– Click on Sign Up from the top menu bar
  • Step 2 – After signing up, please log In using your email address and password.
  • Step 3 – On the next page click on Start Service button to start the service. 
  • Step 4 – Please read the information on the next page and click on Dashboard from the top menu bar.
  • Step 5 – On the Dashboard page, Click on Users button
  • Step 6 – Add yourself as a user.
  • Step 7 – Click on NacPass button to assign a NacPass (mobile app) to yourself. An email will be sent to you once you click on Setup.
  • Step 8 – Log out at this point from the website
  • Step 9 – Register yourself for NacPass App on your smart phone.
  • Step 10 – Authorize yourself using NacPass.
  • Step 11 – Log In to the Known Access website again. If step-9 is not followed then you will not be able to log in.
  • Step 12.1 – Now configure your Network information on our site. Also, you can enter your Users (employees) and assign them NacPass mobile app at this point.
  • Step 12.2 – Configure your router(s) to point to our cloud services
  • Step 13 – Start accessing your network and network resources using NacPass securely.

Step 1 – Sign Up

  • Please click on the Sign Up from the top menu bar.
  • In the sign up screen you need to provide your name, email address, phone number (capable of receiving SMS) and your company’s URL.
  • Please pick a complex password and remember it for future use.
  • Click on the Submit button.
SignUp

Step 2 – Log In

  • Click on the Log In from the top menu bar
  • Login using your email and password as you picked at the time of sign up in Step 1.

Step 3 – Start Service

  • Once you log in, you will see the screen as shown.
  • If you want to see a demo of our cloud security offereing, click on the Demo button. The demo uses our NacPass mobile app for multi-factor authentication for VPN access.
  • If your company is small, having less than 25 employees in one location, then this service is free for you. Click on the Start Service button.
  • If your company has more than 25 employees and/or multiple locations, you can still have a free trial. The trial will support upto 25 employees in one location. Click on the Start Service button.

Step 4 – Go to Dashboard

  • At this point you will get a notification stating that Known Access is reviewing your information but you can start configuring your service.

Step 5 – Configure your Service

  • In the top menu bar, click on Dashboard.  You will go to the Dashboard screen as shown.
  • This screen has information how to assign yourself a NacPass mobile App.
  • Click on the Users button and add yourself as a user 

Step 6 – Add yourself as a User

  • You are on Users screen at this point
  • Click on Add button
  •  Other than your UserID and Password all other fields are going to be pre-populated
  • Pick a UserID and a corresponding password for yourself
  • Click on Submit
  • Next click on NacPass

Step 7 – Assign yourself NacPass Mobile App

  • Make sure your entry is pre-selected on the NacPass Status screen
  • Click on the Setup button
  •  An email will be sent to you with the  NacPass registration information
  • Please make sure you have received the email

Step 8 – Log Out

  • Click on the top right, shown by red arrow, where it says Welcome, <UserID>
  • Select Log Out

Step 9 – NacPass registration

  • Please find your NacPass Registration email.
  • Download the NacPass mobile App from your App store. Download links are provided in the email.
  • Tap NacPass icon on the phone
  • Tap ALLOW notifications
  • Tap START
NacPass-Start-Page

NacPass Registration using Registration Key

IMG_2287

Email with Registration Key

IMG_2292
IMG_2288
Cloud-Verification

You will see two methods to register: Using Registration Key or QR Code. Choose Registration key.

Go to the NacPass registration email and copy the Registration key.

Paste the Registration key and enter your UserID. Enter the 7-digit PIN that you received from your Administrator.

Choose a passphrase, 8 to 24 characters long, with one or more spaces in the middle.  You will need to remember this passphrase. Tap Register.

NacPass Registration using QR Code

IMG_2287

Email with QR code

IMG_2291
Cloud-Reg
Cloud-Verification

You will see two methods to register: Using QR Code or Registration Key. Choose QR Code.

Tap ALLOW on NacPass to access your camera. Go to your email on a computer and point the phone to the QR code.

Enter your UserID. Enter the 7-digit PIN that you received from your Administrator.

Choose a passphrase, 8 to 24 characters long, with one or more spaces in the middle.  You will need to remember this passphrase. Tap Register.

Successful Registration to Commands Screen

Reg-Success
commands-screen

Step 10 –  Authorize Command

  • After successful registration you will see the Commands screen.
  • At this point Authorize command is displayed as default.
  • Tap Touch ID when enabled. Alternatively, you can always enter your passphrase.
  • If successful then you will get the Authorize screen.
  • It will display your authorization period. Authorization is valid for one successful attempt only.
  • Now you can login to your network using your UserID and Password within 2 minutes.
  • You need to authorize again for subsequent accesses.
commands
commands-screen
authorize-output

Step 11 – Log In

  • Click on the Log In from the top menu bar
  • Login using your email and password as you picked during the sign up process. Make sure you have authorized yourself using the NacPass App.

Step 12.1 – Network Configuration on our Site

  • Tap on Network button.
  • Tap on ADD button.
  • You will get a screen as shown.
  • Enter the IP Address of your router in the first field.
  • Next entry is for the name of the router. It helps when you have 3-4 routers. For example you can name it by city or building or by zip-code.
  • The next field is Type. Here you need to tell us the brand and model number of the router.
  • The last field is Shared Secret. The shared secret should be the same on this site and on your router. The sensitive data transmitted, between your site and our cloud based service, will be encrypted using this shared secret.
AddRouter

Step 12.2 – Network Configuration on Your Router(s) Part-2

  • At this point you need to configure your VPN router so the authentication requests to access your network can go to Known Access cloud service. Mainly you need to change the following configurations on your router:
      1. Radius-server-host IP address – As provided in the email
      2. auth-port – This field must be set to 1812
      3. acct-port – This field must be set to 1813
      4. radius-server key – The key should be the same on your router as configured on our website

       We are giving you an example below to configure a Cisco router:

        Login to your router as:

  • SSH:
  • # ssh UserID@IP-Address-of-your-router
  • Password:

       Please verify how your router is configured for Radius

  • Device# enable
  • Device# show run | include radius

 Output

  • aaa authentication login default group radius local
  • aaa authentication ppp default group radius
  • aaa authorization exec default group radius
  • aaa authorization network default group radius
  • aaa accounting network default start-stop group radius
  • radius-server host xxx.xxx.xxx.xxx auth-port xxxx acct-port xxxx         –> Change
  • radius-server timeout 3
  • radius-server key Your-Current-Secret-Key           –> Change
  • radius-server vsa send authentication
           Please change the configuration as shown below:
  • Device#: configure terminal
  • Device#: no radius-server host xxx.xxx.xxx.xxx auth-port xxxx acct-port xxxx         –> This deletes the existing information
  • Device#: radius-server host yyy.yyy.yyy.yyy auth-port 1812 acct-port 1813           –> This enters the new information
  • Device#: no radius-server Your-Current-secret-Key                                               –> This deletes the current key
  • Device#: radius-server Your-New-Secret-Key                                                         –> Enter the new key

Please replace the IP-Address  xxx.xxx.xxx.xxx with the IP-Address yyy.yyy.yyy.yyy provided in an email by Known Access. Also, make sure the auth-port is set to 1812 and the acct-port is set to 1813. Please replace your secret key if needed. The secret key on your router should be the same as configured in Network Connection Part-1.

 

         Configure your Router from scratch when needed

        If your router (in this example CISCO router) is not configured for RADIUS authentication then follow the procedure as explained below:

  • Device# configure terminal
  • Device(config)# aaa authentication login default group radius local
  • Device(config)# aaa authentication ppp default group radius
  • Device(config)# aaa authorization exec default group radius
  • Device(config)# aaa authorization network default group radius
  • Device(config)# aaa accounting network default start-stop group radius
  • Device(config)# radius-server host yyy.yyy.yyy.yyy auth-port 1812 acct-port 1813
  • Device(config)# radius-server timeout 3
  • Device(config)# radius-server Your-New-Secret-Key
  • Device(config)# radius-server vsa send authentication

Step 13 – Strong Identity & Access Security Performed in our Cloud Service

Currently using VPN to access your network

  • Make sure the Network Connection Part-2 has been completed successfully
  • Try to establish a VPN connection to your network
  • Enter your Username (UserID) when prompted
  • Enter your Password
  • At this point you have to make sure you that you have authorized yourself on NacPass as explained in the section User Authentication using Authorize Command
  •  Click OK to establish a connection.

First time setting up a VPN

  • Download Cisco’s VPN client and install it and then launch the application.
  • Setup a new connection and give it a name. For example – Known-Connection, Company-VPN, or Whatever your like.
  • Enter the IP address of your VPN router
  • The next step is to enter the Group-Name and Password as configured in your router for the VPN service.
  • At this point you have created a VPN connection.
  • Whenever you want to setup a connection you just created, click on Connect.
  • Enter your Username & Password.
  • At this point you have to make sure you that you have authorized yourself on NacPass as explained in the section User Authentication using Authorize Command
  •  Click OK to establish the connection.