Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Tassadar
Explorer

CP appliances LOM questions

Hello,

We are deploying tens of new CP appliances with the LOM and we have following questions:

1. We would like to use RADIUS authentication for access to the LOM. How is this implemented? If the RADIUS server is down, will the user be able to authenticate against LOM local database?

2. Is it possible to define network privilege for RADIUS users locally in the LOM interface?

3. Can somebody explain us the exact purpose of sysadmin user? This is what is in the LOM guide:

The sysadmin account can only log in to the LOM Console port on the appliance. It cannot use the Portal to configure LOM. By default, the LOM Portal is disabled.

We do not understand what LOM Console port means here.

Thank you.

0 Kudos
3 Replies
_Val_
Admin
Admin

What specific model are you deploying? Answers will vary. 

0 Kudos
Tassadar
Explorer

Hi,

Right now we are deploying 6500 (CPAP-SG6500).

Thank you.

0 Kudos
_Val_
Admin
Admin

Please use this document for guidance: http://supportcontent.checkpoint.com/documentation_download?ID=32414

Now, some answers:

1. Use the linked admin guide to configure Radius authentication. Server has to be up for successful authentication of a radius account.
2. Use the admin guide.

3. There is a predefined local user on LOM card called sysadmin. You can reset and change the password for this account. However, this account is not shared with Gaia environment, so it can only log in to LOM environment. 


0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events