Hello @the_rock 

Unfortunately, I couldn't find this option.
Everything I've read talks about the portal and the applications on it, and I need it specifically in relation to the Windows account - interaction with Windows.

Let me see if I can find it.

Andy

Apologies mate, I think I mixed something else up. I thought there an option below, but does not appear so...

Andy

Hello @AkosBakos 

I saw this option, without turning it on, I get the opportunity to enter a username, password and connection on the login screen, but at the same time to log into Windows you need to enter the password again, and the task is just to enter the password 1 time and log in to the system, and then connect to the VPN.

Hi @MiniNinja 

Here is an older posts about this topic:

https://community.checkpoint.com/t5/Remote-Access-VPN/Secure-Domain-Logon/td-p/127190

Have a look at on this.

@AkosBakos Thanks for your reply, but I did not find how to transfer authorization to Windows when using SDL. SDL apparently works separately as a VPN connection functionality before logging in, and not as SSO in its usual sense. Goal: enter your username and password 1 time and log in + connect to the VPN.

Maybe I'm missing something or misunderstood.

@G_W_Albrecht Thank you, how do I understand on a standalone client authorization based on a machine certificate?

You will understand if you read the referenced document - it contains SDL, machine auth and all other config options. Machine auth makes the PC connect to RA VPN by itself, so if machine_tunnel_after_logon is enabled, after user login the RA VPN comes up without user intervention.

First option is free, second has to be payed by seat - but if you need Harmony EPS it is a good choice !

@G_W_Albrecht Yes, I understand.

@PhoneBoy Thanks, I already think this is the best option, but you need licenses and a dedicated management server that supports 500 connections.