This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Mohammed_Omin_B
Contributor
‎2019-01-09 05:56 AM
Jump to solution

Kerberos Authentication in Checkpoint cloudguard R80.10

Hi Checkmates,

Dameon Welch-Abernathy

Currently we have local users for all the checkpoint GAiA and SmartConsole but we are planning to move it to a remote authentication servers. we already have Microsoft Azure AD domain services but looks this is not supported in checkpoint cloudguard R80.10

we also have Kerberos Authentication which I am not sure if that is supported in my version. Can you help me know this? 

Many thanks in advance

Omin

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2019-01-10 12:20 PM
In response to Mohammed_Omin_B
Jump to solution

Correct

View solution in original post

4 Replies
PhoneBoy
Admin
Admin
‎2019-01-09 06:56 AM
Jump to solution

For SmartConsole, you cannot do AD authentication directly, but you can indirectly with RADIUS.

Not sure how much of this applies to Azure AD, but: https://community.checkpoint.com/message/28853-re-active-directory-smart-console-administrator 

0 Kudos
Mohammed_Omin_B
Contributor
‎2019-01-09 10:50 PM
In response to PhoneBoy
Jump to solution

It means we only have one option that is RADIUS. NO Keberos, NO SAML, NO AD, NO TACACS, NO TACACS+ for SmartConsole.

And only RADIUS and TACACS+ for gateways. Am i right?

0 Kudos
PhoneBoy
Admin
Admin
‎2019-01-10 12:20 PM
In response to Mohammed_Omin_B
Jump to solution

Correct

Yaelle_Harel
Employee Alumnus
Employee Alumnus
‎2019-01-13 06:50 AM
Jump to solution

Hi Omin,

First of all, we do support TACACS authentication. You can find the documentation in the admin guide.

Regarding AD authentication, we have developed a solution that is currently offered in a limited availability due to some limitations that might apply to some of the customers.

In order to get this solution you can approach Check Point solution center. We recommend waiting for R80.30 but in case you need it on top of R80.20 we can also consider it.

Regarding Azure, we will need to evaluate it based on information about the topology and configuration, the best way to handle it would be submitting an RFE.

Thanks

Yaelle  Harel |  Group Manager

Check Point Software Technologies | Management Product

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
UPCOMING CLOUDMATES EVENTS
    All CloudMates Events