This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Martin_Sykora
Explorer
‎2023-11-23 02:35 AM

LDAP with 2FA for admin access

Hi.

I recently got asked by customer it it is possible to login to SmartConsole and CP gateways and management server and authenticate against the LDAP server (Free IPA) and on top of that they would generate and offline 2FA token with FreeOTP.

I am assuming that this can't be done. If I understand correctly Checkpoint devices only externally authenticate admin access against RADIUS and TACACS or there is the SecurID option of 2FA.

Can you confirm my suspicion?

R81.20 on management server / R81.10 on gateways

Thanks

0 Kudos
1 Reply
PhoneBoy
Admin
Admin
‎2023-11-23 07:45 AM

For access to Gaia OS, LDAP cannot be used as an authentication mechanism.
Further, there is not a prompt for the second factor via RADIUS, it must be appended to the end of the password.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events