I have a question on using DynamicID is the 2 factor authentication method to authenticate remote access vpn users.
All of CheckPoint's documentation is on the MobileAccess Blade when using DynamicID.
Basically, what we want to achieve is that a user can log in from his SecureClient VPN, using AD username and password, then he receives an SMS with OTP and can log in to VPN.
The thing is here. When setting up this on Checkpoint, We are not getting the prompt to enter the OTP password. Under 'Multiple Client Authentication Settings' in Gateway > VPN Clients > Authentication, we created a new authentication method which comprises of <Username and Password> followed by DynamicID.
Anyone else maybe using this scenario in his setup? Mobile access blade is not enabled in our case.
Thanks in advance.
Senior Information Security Engineer