This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
SamiH
Contributor
‎2020-05-31 02:00 AM

OS authentication in SmartConsole

SmartConsole OS authentication should be easy to setup, according to manual. It also states that I can use Windows domain accounts:

Operating System Password OS Password is stored on the operating system of the computer on which the Security Gateway (for users) or Security Management Server (for administrators) is installed. You can also use passwords that are stored in a Windows domain. No additional software is required.

Trying that out, audit log seems to show different error message if the username is unknown or if the password is wrong. So it recognizes my account exists, but doesn't accept the correct password. My question: Any idea how to debug what happens? Domain controllers won't show any logs for the attempt and it seems like there is no outgoing traffic to domain controllers at all. Yet it recognizes the account.

0 Kudos
2 Replies
Chris_Atkinson
Employee Employee
Employee
‎2020-05-31 03:13 AM

This is mostly a legacy option from when your SMS could be a Windows box.

Radius backed onto AD or sk145392 are your current options.

 

CCSM R77/R80/ELITE
PhoneBoy
Admin
Admin
‎2020-05-31 11:15 PM

OS Password refers to the OS the component (gateway or management) is running on.
Since R80+ only runs on Gaia OS, this only works if the user is defined in Gaia OS with a password.
It will not support authenticating with a Windows domain.

In earlier releases, it was possible to run Gateways and Management on Windows, where Windows OS would handle the domain authentication.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events
    Top