topic vpn client for windows access by credential and certificate in SASE and Remote Access

vpn client for windows access by credential and certificate

80fd220b-e3b5-4 — Fri, 03 Jan 2020 16:25:20 GMT

hi everyone,
in my environment we have a couple of checkpoint 80.30 with blade mobile access enabled. The users access in my organization by checkpoint mobile for windows using a token one time password (the generic user has Authentication method:Radius). Now I would like to add a pc certificate for an user, but I saw that if I set a Certificate in Certificate menu for an user, He access by only token one time password even without I install the certificate on his pc . How can I set to permit access only by using at the same time time token one time password and personal certificate?

thanks

Emiliano

Re: vpn client for windows access by credential and certificate

PhoneBoy — Sat, 04 Jan 2020 01:45:16 GMT

Did you configure multiple authentication schemes per: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk86240

Re: vpn client for windows access by credential and certificate

emiliano_mastro — Sat, 04 Jan 2020 09:29:08 GMT

hi, thanks very much for answer.

I didn't do that, but I will be trying next week. If I well understand, using the authentication method is a global configuration and I can't for test configure it for only one user, is it right? Also, how do I have to set vpn client for windows to use at the same time certificate installed and username and password?

Thanks

Emi

Re: vpn client for windows access by credential and certificate

PhoneBoy — Mon, 06 Jan 2020 18:32:35 GMT

It's a global configuration, yes.
Your users may need to delete/re-add the site in order for the changed authentication methods to take effect.