- Products
- Learn
- Local User Groups
- Partners
- More
Check Point Jump-Start Online Training
Now Available on CheckMates for Beginners!
Why do Hackers Love IoT Devices so Much?
Join our TechTalk on Aug 17, at 5PM CET | 11AM EST
Welcome to Maestro Masters!
Talk to Masters, Engage with Masters, Be a Maestro Master!
ZTNA Buyer’s Guide
Zero Trust essentials for your most valuable assets
The SMB Cyber Master
Boost your knowledge on Quantum Spark SMB gateways!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
CheckFlix!
All Videos In One Space
I try to figure out if there is really no way to setup administrator authentication and autorization via groups.
Documentation shows only authentication via multiple authentication backends like radius, tacacs ... unfortunatley no ldap.
And even worse, every administrator account needs to be configured one by one, instead there will be one object per admin authrorization profile, that can be mapped to e.g. a radius attribute... or tacacs attribute... ..or ldap groupd but ldap is not mentioned for admin auth.
Configuring Authentication Methods for Administrators (checkpoint.com)
For users there is a way to authenticate them via ldap and maybe also some grouping, but for administrators I can not find anything. So I have to add/remove admin users name by name regularly on the management server, even if the user is on the backend (ldap) added/removed.
Does someone have more information on that topic ?
If you are talking about admins or ho connect via SmartConsole, you are correct.
Individual admins must be created.
R81.20 will allow authentication via SAML.
Not sure if that will also allow for defining a group of admins (versus defining individual users).
Thank's a lot,
unfortunately we have to live with the overhead on user creation on backend (ldap) and on manager(s) for admin users.
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY