Santa Clara Gateway
—Employees and contractors can
authenticate to the Santa Clara Gateway (PA-3020 in the co-location
space) using 2FA. This gateway requires users to provide their Active
Directory credentials and their OTP. Because this gateway protects
sensitive resources, it is configured as a manual-only gateway.
As a result, users do not connect to this gateway automatically
and must manually choose to connect to this gateway. For example,
when users connect to AWS-Norcal, which is not a manual-only gateway,
some sensitive internal resources are not accessible. The user must then
manually switch to and authenticate with the Santa Clara Gateway
to access these resources.