Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
Contributor

Mobile Access authentication scheme restriction

Hi,

We're using Mobile Access to let employees connect to the office. We use both Checkpoint mobile with certificate and SSL-VPN with a physical token.

We implemented a new authentication scheme of Username Password (ldap) + DynamicID (sms) and it's working fine.

However, we would like to only allow selected users to be able to use this auth scheme, based on groups from Active Directory.

How can we accomplish that?

 

Thanks

 

 

0 Kudos
Reply
1 Reply
Highlighted
Admin
Admin

In order to map a user to a user group, the user must complete authentication first.
Meanwhile, in order to customize the authentication flow per user group, we must know it before authentication completes.
Bit of a "chicken and egg" problem.

Perhaps you can leverage 'Protection Levels' which can bind certain applications to certain authentication methods.
0 Kudos
Reply