Remote Access VPN with DynamicID

lullejd · ‎2018-09-18

Hello,

I have a question on using DynamicID is the 2 factor authentication method to authenticate remote access vpn users.

All of CheckPoint's documentation is on the MobileAccess Blade when using DynamicID.

Basically, what we want to achieve is that a user can log in from his SecureClient VPN, using AD username and password, then he receives an SMS with OTP and can log in to VPN.

The thing is here. When setting up this on Checkpoint, We are not getting the prompt to enter the OTP password. Under 'Multiple Client Authentication Settings' in Gateway > VPN Clients > Authentication, we created a new authentication method which comprises of <Username and Password> followed by DynamicID.

Anyone else maybe using this scenario in his setup? Mobile access blade is not enabled in our case.

Thanks in advance.

Senior Information Security Engineer

PhoneBoy · ‎2018-09-19

Requires R80.10 and E80.85+ clients.

See: Mobile Access and VPN clients supporting Multiple Login Options

Dor_Marcovitch · ‎2019-01-16

hey,

will it also support authentication with certificate & SMS ?

thanks

lullejd · ‎2019-01-17

According to this SK: Multiple Authentication Schemes for Mobile Access / Remote Access

It is not supported.

Senior Information Security Engineer

Superpinky12 · ‎2020-05-28

Hi. I configured Dynamic Id trough mail. Mobile Access trough portal i receive mail with code. But when connect from Endpoint security cantor receive mail. The conf is the same for both.

Are you a member of CheckMates?

Remote Access VPN with DynamicID