https://community.checkpoint.com/t5/General-Topics/Tacacs-server-authentication-issue-in-checkpoint-smartconsole/m-p/14732#M2515 <HTML><HEAD></HEAD><BODY><P>I have a tacacs server in one of my client to for the user authentication. I have done all the configuration in tacacs and it is working perfectly in other vendor product and checkpoint WEBGUI and CLI login. But in the case of smartconsole it is not authenticated.</P><P></P><P>I have followed this procedure for the smartconsole user authentication:</P><P><A class="link-titled" href="https://indeni.com/check-point-firewalls-how-to-setup-authentication-for-administrators-both-in-webuissh-and-smartdashboard-for-check-point-gaia/" title="https://indeni.com/check-point-firewalls-how-to-setup-authentication-for-administrators-both-in-webuissh-and-smartdashboard-for-check-point-gaia/">How to Setup Authentication for Admins – WebUI / SSH/ SmartDashboard – Check Point GAIA | Indeni</A>&nbsp;</P><P></P><P>Also, could i use same user that I have created for smartconsole login using tacacs server to the vpn user authentication by adding that user to the vpn access&nbsp; user group?</P><P></P><P>This is the log message&nbsp; that I get in tacacs server while smartconsole authentication is failure:&nbsp;</P><P></P><P>Apr 12 16:35:16 localhost tac_plus[6508]: connect from 10.10.10.250 [10.10.10.250]<BR />Apr 12 16:35:16 localhost tac_plus[6508]: Error 10.10.10.250 : Invalid AUTHEN/START packet (check keys)</P></BODY></HTML> Thu, 12 Apr 2018 17:53:16 GMT Manoj_Tiwari 2018-04-12T17:53:16Z https://community.checkpoint.com/t5/General-Topics/Tacacs-server-authentication-issue-in-checkpoint-smartconsole/m-p/14732#M2515 <HTML><HEAD></HEAD><BODY><P>I have a tacacs server in one of my client to for the user authentication. I have done all the configuration in tacacs and it is working perfectly in other vendor product and checkpoint WEBGUI and CLI login. But in the case of smartconsole it is not authenticated.</P><P></P><P>I have followed this procedure for the smartconsole user authentication:</P><P><A class="link-titled" href="https://indeni.com/check-point-firewalls-how-to-setup-authentication-for-administrators-both-in-webuissh-and-smartdashboard-for-check-point-gaia/" title="https://indeni.com/check-point-firewalls-how-to-setup-authentication-for-administrators-both-in-webuissh-and-smartdashboard-for-check-point-gaia/">How to Setup Authentication for Admins – WebUI / SSH/ SmartDashboard – Check Point GAIA | Indeni</A>&nbsp;</P><P></P><P>Also, could i use same user that I have created for smartconsole login using tacacs server to the vpn user authentication by adding that user to the vpn access&nbsp; user group?</P><P></P><P>This is the log message&nbsp; that I get in tacacs server while smartconsole authentication is failure:&nbsp;</P><P></P><P>Apr 12 16:35:16 localhost tac_plus[6508]: connect from 10.10.10.250 [10.10.10.250]<BR />Apr 12 16:35:16 localhost tac_plus[6508]: Error 10.10.10.250 : Invalid AUTHEN/START packet (check keys)</P></BODY></HTML> Thu, 12 Apr 2018 17:53:16 GMT https://community.checkpoint.com/t5/General-Topics/Tacacs-server-authentication-issue-in-checkpoint-smartconsole/m-p/14732#M2515 Manoj_Tiwari 2018-04-12T17:53:16Z https://community.checkpoint.com/t5/General-Topics/Tacacs-server-authentication-issue-in-checkpoint-smartconsole/m-p/131623#M23863 <P>Hi Manoj,<BR /><BR />I am facing the same issue, how do u resolved it?<BR /><BR /><BR /></P> Wed, 13 Oct 2021 06:29:39 GMT https://community.checkpoint.com/t5/General-Topics/Tacacs-server-authentication-issue-in-checkpoint-smartconsole/m-p/131623#M23863 Wei_Soon_Heng 2021-10-13T06:29:39Z https://community.checkpoint.com/t5/General-Topics/Tacacs-server-authentication-issue-in-checkpoint-smartconsole/m-p/131645#M23864 <P>Two questions:</P><P>What technology are you using for authenication, ACS, ISE, TAC-Plus etc? Is it configured for TACACS or TACACS+?</P><P>Check keys suggests shared secrets between the two boxes are not matched.</P><P>Cheers,</P><P>Tom</P> Wed, 13 Oct 2021 07:56:16 GMT https://community.checkpoint.com/t5/General-Topics/Tacacs-server-authentication-issue-in-checkpoint-smartconsole/m-p/131645#M23864 tmorgan 2021-10-13T07:56:16Z