Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
AkosBakos
Advisor
Advisor

Remote Access VPN - certificate based login

Hi CheckMates,

I need your help. 

I have a VPN setup, where de user is authenticated by DN. The disadvantage of this, if I move the user to an another OU, the DN changes. (Un)fortunately, the user certificate  is stored on an external smarcard. In this case I need to recreate the user cert and put it to the smartcard. I have 100+ users.

I changed the auth setting to UPN. The VPN connection is unsuccessful until I recreate the site. After this, everything works as expected.

How can I centrally modify the trac.config? 

Every tip and advice are appreciated.

I don't have Harmony, only SCCM.

Akos

----------------
\m/_(>_<)_\m/
0 Kudos
5 Replies
G_W_Albrecht
Legend Legend
Legend

AkosBakos
Advisor
Advisor

Thank, but this SK is deleted

https://support.checkpoint.com/results/sk/sk94273

Akos

----------------
\m/_(>_<)_\m/
0 Kudos
PhoneBoy
Admin
Admin

The cpmsi_tool is mentioned in https://sc1.checkpoint.com/documents/RemoteAccessClients_forWindows_AdminGuide/Content/Topics-RA-VPN... 
The tool is also distributed with SmartConsole ( in C:\Program Files (x86)\CheckPoint\SmartConsole\VERSION\PROGRAM\util )

0 Kudos
AkosBakos
Advisor
Advisor

Is that possible, the trac.conf doesn't contain that information which relevant for the field selection (DN or UPN) from the user point of view?

Akos

----------------
\m/_(>_<)_\m/
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events