Solved: Re: Smartcenter LDAP authentication

marki · ‎2024-07-11

How would I be able to use LDAP as authentication backend for Smartcenter/Smartconsole?

(Not for the gateways, i.e. for VPN etc this is not necessary)

PhoneBoy · ‎2024-07-11

Yes, refer to: https://support.checkpoint.com/results/sk/sk145392

View solution in original post

PhoneBoy · ‎2024-07-11

Yes, refer to: https://support.checkpoint.com/results/sk/sk145392

marki · ‎2024-07-12

Hmm I'm not sure who marked it as a solution, however I'm not sure how this works.

Where do I define the LDAP server? We use LDAP, but it is not AD.

Thanks.

PhoneBoy · ‎2024-07-12

You would have to follow the instructions in this SK to do it.
They are only confirmed to work with Active Directory, however, and may not work with other implementations.

marki · ‎2024-07-12

Well it certainly does not work with others, because usually the DNS is not the LDAP server, only with AD this may be the case.

"AD server does not need to be defined in SmartConsole for authentication purposes. It must be defined as a DNS server in the WebUI." So for a generic LDAP server, it's useless.

PhoneBoy · ‎2024-07-12

Even if you were using Active Directory, there are a number of limitations here that might make this solution not workable.
Your best bet is to leverage a different authentication mechanism.
If this is critical to support, it is best to discuss this with your local Check Point office.

the_rock · ‎2024-07-11

Sk Phoneboy provided is probably your best option.

Andy

Are you a member of CheckMates?

Smartcenter LDAP authentication