Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
MarcuzShinz
Contributor
Contributor
Jump to solution

Configure Office Mode IP and ipassignment.conf file

Hi Guy,

Currently I am configuring VPN Client, with the need to use multiple subnets for VPN IP allocation, I am configuring that on the "ipassignment conf" file, however when I configure 1 IP for a user and authenticate the connection with personal cert, office mode cannot issue an IP. On the contrary, if I let that user authenticate via username & password, it will receive the IP. Error as attach image

 

 

 

0 Kudos
1 Solution

Accepted Solutions
the_rock
Legend
Legend

I recall while ago when I did this for the customer, we followed that sk, could not figure it out and TAC was able to fix it for us. How they did it, I have no recollection, sorry mate : - (

Andy

View solution in original post

0 Kudos
4 Replies
PhoneBoy
Admin
Admin

You must specify the full DN for the certificate used to authenticate the user when using ipassignment.conf.
See: https://support.checkpoint.com/results/sk/sk33422 

0 Kudos
MarcuzShinz
Contributor
Contributor

Hi Bro,

Yes, I specifically full DN for cert  cp-gw, addr 172.16.110.129 CN=tronnq,OU=users,O=cp-sms.umc.local.o9egxh

But this is a cert created on SMS, not LDAP, I see that it has successfully authenticated but does not receive the Office Mode IP

 

0 Kudos
the_rock
Legend
Legend

I recall while ago when I did this for the customer, we followed that sk, could not figure it out and TAC was able to fix it for us. How they did it, I have no recollection, sorry mate : - (

Andy

0 Kudos
PhoneBoy
Admin
Admin

Suggest a TAC case: https://help.checkpoint.com

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events