This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
jnoble
Participant
‎2024-08-15 10:28 AM

Setting up secondary Remote Access VPN authentication method using radius

Hi all,

We have SAML authentication in place for remote access vpn login for our users. When Microsoft had an issue a few weeks back, some users were affected and we want to set up a backup authentication method using radius incase Microsoft is having issues again in future! 

I was working with TAC but we are not getting anywhere.

We have a 2022 Windows server which is our Active directory and the radius service is running on it. The gateway is R81.10 and we followed the admin guide to setup the radius authentication, but the authentication is getting rejected by NPS policy. The account gets locked out after 3 attempts because of our password policies. It means that the vpn client is sending the username and password to radius but the password might not be in correct format. Does anyone experienced an issue like this? 

Anybody have proper steps for setting up radius authentication for R81.10?

Thanks,

JN

 

0 Kudos
2 Replies
_Val_
Admin
Admin
‎2024-08-19 12:20 AM

NPS policy means the issue is on Microsoft side. Did you reach out to MS support too?

0 Kudos
PhoneBoy
Admin
Admin
‎2024-08-19 06:51 AM

If the RADIUS Server has been patched against BLAST RADIUS, then you will need equivalent patches on the Check Point side, which have not been rolled out to current JHF yet.
Please consult with TAC: https://help.checkpoint.con 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events