Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
orion_son30
Contributor
Jump to solution

Endpoint Security VPN Client | Disable option

Hi Checkmates community,

Anyone knows if it is possible to disable some options on the Endpoint Security VPN Client? For example, I would like to disable the option BC Authentication in the Endpoint Security VPN, so that the end user cannot change that option. Is that possible? Anyone knows if I can play with this on the GuiDBEdit or something like that?

Screenshot 2022-02-08 094435.png

 

Any help on this, it would be great.

Regards

0 Kudos
1 Solution

Accepted Solutions
G_W_Albrecht
Legend Legend
Legend

If you have end users that tamper with the RA VPN client settings better break their fingers first 😉! Such people would loose their job in seconds... 

But you can completely disable the GUI using Enterprise Endpoint Security Windows Client for ATM

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

View solution in original post

0 Kudos
6 Replies
HeikoAnkenbrand
Champion Champion
Champion

Hi @orion_son30,

Maybe you can configure it in the following file on the gateway (Remote Access TTM Configuration )
$FWDIR/conf/trac_client_1.ttm

➜ CCSM Elite, CCME, CCTE ➜ www.checkpoint.tips
0 Kudos
orion_son30
Contributor

Hi @HeikoAnkenbrand 

Thanks for your input. I completely forgot the .ttm file.

However, for this particular case, I was not able to find the right solution after reading the SK or the Advanced Guide for the Remote Access VPN.

The main concern of my end customer is the possibility that the end user has to Enroll or Renew the Certificate on the Endpoint Security VPN Client.

Screenshot 2022-02-08 141707.png

Our goal would be to disable this option for the end user.

Regards

0 Kudos
G_W_Albrecht
Legend Legend
Legend

Why should the user do needless Renew (Enroll is impossible) ? Maybe rather use Enterprise Endpoint Security Windows Client for ATM

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
orion_son30
Contributor

Hi @G_W_Albrecht 

You're absolutely right. The end users should not use those options. The problem is that they can. If they press the button Renew, they will break their VPN conection. So, we would like to avoid that, since if the VPN connection breaks it will add more load work to the IT team.

Regards

 

0 Kudos
G_W_Albrecht
Legend Legend
Legend

If you have end users that tamper with the RA VPN client settings better break their fingers first 😉! Such people would loose their job in seconds... 

But you can completely disable the GUI using Enterprise Endpoint Security Windows Client for ATM

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
orion_son30
Contributor

Hi @G_W_Albrecht,

Thanks for your help. I will try out the Endpoint Client for ATM and play around to check if it is feasible for us to use that.

Once again, many thanks for your help.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events