This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Saranya_0305
Collaborator
‎2025-09-10 01:40 AM
Jump to solution

Integration Microsoft Entra(from Cisco) with Checkpoint

Dear Mates,

We have Management Server running on the R81.20 version and Security Gateways with the R81.10 version.

Currently we are using CiscoDuo for MFA and now we want to move to Microsoft Entra  for Remote Access VPN  Users.

We are now currently using Identity Awareness Blade from local AD for all users.

As per the below document and video we have configured on Azure side and created Azure AD and Identity Provider objects in Smartconsole.

Using Azure AD for Authorization

Azure AD Video

Can you please suggest me for how to proceed for Remote Access VPN process? 

If we do the integration what will be the impact on the local users like pro and cons?

Below is the current configuration screenshots in firewall.

 

Regads,

Saranya

 

 

Preview file
84 KB
Preview file
104 KB
Preview file
120 KB
Preview file
148 KB
Preview file
207 KB
Preview file
154 KB
Preview file
141 KB
Preview file
168 KB
Preview file
196 KB
Preview file
195 KB
0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2025-09-10 10:00 AM
Jump to solution

I'd start with this SK, which lists the various requirements for using this feature: https://support.checkpoint.com/results/sk/sk172909 
You can permit both authentication methods to be used.

View solution in original post

3 Replies
G_W_Albrecht
MVP Silver
MVP Silver
‎2025-09-10 02:26 AM
Jump to solution

@PhoneBoy can you move this to Remote Access VPN ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
PhoneBoy
Admin
Admin
‎2025-09-10 10:00 AM
Jump to solution

I'd start with this SK, which lists the various requirements for using this feature: https://support.checkpoint.com/results/sk/sk172909 
You can permit both authentication methods to be used.

the_rock
MVP Platinum
MVP Platinum
‎2025-09-10 05:25 PM
Jump to solution

The sk @PhoneBoy provided is exactly what you need to follow.

Andy

Best,
Andy
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events