Verify a certificate is being used

cdooer — Tue, 15 Oct 2024 12:14:08 GMT

Hey everyone. We're implementing certificate verification as an added layer of security on our VPN gateways, and so far testing is going well. Rather than requiring a certificate as soon as we push the certificate verification out, we would like to use the option where it will use the cert if it's there, but not require it if it's not.

All that said, is there some sort of log we can look at in order to make sure clients are indeed using the certificate, allowing us to catch some of the stragglers that might not have it installed on the client side yet?

Thx,

Re: Verify a certificate is being used

G_W_Albrecht — Tue, 15 Oct 2024 15:23:23 GMT

Only client logs are available in trac.log (client log) from Endpoint Security VPN thatshowthe auth steps - but i found this that could help: https://community.checkpoint.com/t5/Management/SmartView-VPN-Client-enhanced-view/m-p/78873#M48

topic Re: Verify a certificate is being used in SASE and Remote Access

Verify a certificate is being used

Re: Verify a certificate is being used