I've read some SKs, but I still can't see it.
The objective: to have a clearer idea of how authentication is processed and its impact on the firewall, allowing, in an emergency, to change the configuration from one server to another.
What we would like:
1 - Understand the difference between Legacy and the "Username and Password" option
2 - Understand how queries are made in Legacy and in "Username and Password"
3 - If it would be possible to have several LDAP servers for VPN authentication, or where do I change this option if we need to.
4 - Another curiosity, could the checkpoint SNX client work with a certificate if we change this global option?