Re: How can i get an actually usable login process...

Matthias42 · ‎2024-09-16

Hi,

i just spend >30min of my life because

1. CP forced me to reset my password

2. that would require solving a google capcha, that never ended. Had to start the whole password reset procedure 3 times, At the third attempt the captcha ended after 6 pages.

3. Every login now requires an SMS! Including all subsites under checkpoint.com. Including this forum!

How can i get rid of all this nonsense?

How many more barriers do you want to put up, to get rid of your customers?

PhoneBoy · ‎2024-09-16

I've passed your feedback along to the relevant team internally.

Matthias42 · ‎2024-09-16

Thanks.

_Val_ · ‎2024-09-17

@Matthias42 Thanks for your feedback.

We took a look into the issue you reported and saw that you did not log with your UserCenter for the last 9 months, till today. Your password expired at that time, and you had to renew it.

As a security company, we take the security of our customer and partner accounts very seriously. We now require MFA on all UserCenter requirements to make sure user data is protected.

You can set one-time password to be sent via an SMS, or you can enroll in one of the popular authentication apps, such as Google Authenticator or others.

Most importantly, you can also choose the "remember me" option to avoid typing in your 1TP for every login.

I hope this addresses your concerns.

Matthias42 · ‎2024-09-17

my main problem is the google captcha. It often never finishes.

2FA as a requirement for a forum seems a bit excessive?

Also 2FA with SMS is an annoyance, but not really secure. Look up SS7 roaming. It has no authentication. Everybody can collect your SMS, if he knows how. The interface is exposed to everyone via many web voip providers.

_Val_ · ‎2024-09-17

@Matthias42 I sure understand. As already said, you can use a 1TP app of your choice instead of SMS. I do just that myself. Captcha only appears if you are running your session from an anonymous window, or after clearing your web cache. Also, we are using the same Identity Provider SAML for the UserCenter, Partner Map, CheckMates, and other tools requiring authentication, so there is no way to remove MFA just for the community, even if we wanted.

You can suppress MFA for 30 days by choosing "Remember" option.

This setting is global, and it will affect all websites that use UC login. I hope this helps.

Nik_Bloemers · ‎2024-09-17

I have to agree with the CATPCHA problem, the amount is sometimes ridiculous. Every time I have to solve one, sometimes like 4 or 5. Multiple times a day too, since you get logged out pretty quickly. I've clicked more motorcycles and crosswalks on checkpoint.com in a week than on the rest of the entire internet in like 3 months.

G_W_Albrecht · ‎2024-10-08

The forum and the user center account have the same log in, so 2FA is an important security measure. I use MS Authenticator (as i also have to use it for my work) for 2FA...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

the_rock · ‎2024-09-17

I believe @PhoneBoy mentioned before it forces you every 6 months now to reset the password. As far as CAPTCHA, I find it bit silly, but that appears to be on so many sites now : - )

Andy

Best,
Andy

Nik_Bloemers · ‎2024-09-23

I actually just had to finish 11 (!!!!) CAPTCHA's before being allowed through. This is absolutely ridiculous, please fix this. It makes the website unusable.

PhoneBoy · ‎2024-09-25

The team responsible for our IdP is looking into this.

Christian_Opitz · ‎2024-10-08

The Captchas are more and more frustracting. Over 20 Captchas in 3 Browsers and no success today :(. And this with MFA! Collegues complain about simular problems. I was only successful on another PC where I only need my MFA without Captchas today.

_Val_ · ‎2024-10-08

Christian, please make sure you allow cookies from Check Point sites. Also, escalated internally.

Are you a member of CheckMates?

How can i get an actually usable login process for checkpoint websites?