- CheckMates
- :
- Products
- :
- Quantum
- :
- Remote Access VPN
- :
- Log out designated RA VPN users
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Are you a member of CheckMates?
×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Jump to solution
Log out designated RA VPN users
Good day everyone.
I am looking for advise on the best way to force designated RA User VPN users off of VPN.
The requirement is to force the user offline in such a way that they would have to authenticate again to (or not to) gain VPN access again.
In this use case the backend authentication is completed via AD. In testing disabling the user AD account does not automatically disconnect their VPN session.
Thoughts?
1 Solution
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
You can use RAsession_util (a CLI-based tool) for this.
However, it is OFF by default and requires a cprestart in order to activate it.
However, it is OFF by default and requires a cprestart in order to activate it.
2 Replies
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
You can use RAsession_util (a CLI-based tool) for this.
However, it is OFF by default and requires a cprestart in order to activate it.
However, it is OFF by default and requires a cprestart in order to activate it.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
1. Find user's source IP of his/her workstation
2. Go to the gateway where the user is connected and needs to be disconnected
3. Issue command "vpn tu"
4. Delete all IPsec+IKE SAs for a given User (Client)
5. Repeat steps 2-4 for all relevant gateways
6. User is disconnected from all desired gateways
Kind regards,
Jozko Mrkvicka
Jozko Mrkvicka
