Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Bac26
Contributor

Remote Access Vpn SMB two factor autenthication

Hello

Is it possible to use Microsoft Authenticator as second factor for Remote VPN access to SMB series centrally managed via Smart-1 Cloud

Any guide can refer too?

Thank you

0 Kudos
8 Replies
Chris_Atkinson
Employee Employee
Employee

Believe this is currently a limitation, refer: sk178604

Will check if it's planned to be resolved in the next release and revert.

CCSM R77/R80/ELITE
0 Kudos
Bac26
Contributor

so kind MFA can you use? any suggestion?

0 Kudos
Chris_Atkinson
Employee Employee
Employee

Anything Radius based would likely work here. Possibly a integration via Microsoft NPS as an intermediary?

Recommended R81.10.x in this case so you have access to Radius 2.0

CCSM R77/R80/ELITE
0 Kudos
Bac26
Contributor

0 Kudos
Chris_Atkinson
Employee Employee
Employee

Radius is a workaround and not listed there as a limitation?

CCSM R77/R80/ELITE
0 Kudos
PhoneBoy
Admin
Admin

My understanding from talking with R&D is that the latest firmware (R81.10.05) has support for Remote Access SAML integrated.
However, because it has not been tested by QA to confirm it, it is still listed as a known limitation.
Assuming your Smart-1 Cloud tenant is on R81.20, then you should be able to apply the following: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

Having said that, this isn’t formally supported (yet).
If you want formal support, I recommend engaging with your Check Point SE.

Otherwise, you’re limited to using RADIUS + NPS as @Chris_Atkinson suggested.

0 Kudos
Bac26
Contributor

So beside it not using radius can you use any other multifactor authentication?

0 Kudos
PhoneBoy
Admin
Admin

If the gateway was locally managed (not with Smart-1 Cloud) AND you were running the latest release, you could do MFA over Email or SMS.
Otherwise, you’re limited to using RADIUS or maybe TACACS.
Or try the SAML approach and share your feedback 🙂

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events