This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Daniel_Kavan
Advisor
‎2021-01-22 07:56 AM

check point okta integration password expires

Our okta / check point integration went well until someone's password expired.

In other implementations with Okta users login with the okta login page or SSO page they see and get prompted when their password will expire.  However, when users log into the Check Point SSLVPN portal, users don't see any notification that their passwords will expire soon.  Users want a notification like your okta password will expire in 5 days.  Please go to login.com to change it for example.   Ideally, Check Point would query Okta when users log in and report back, need to change password in 5 days.   RFE! 

We are working on this, just wondering if any one had any ideas or comments.  I will update this post on what we ended up doing.

0 Kudos
4 Replies
PhoneBoy
Admin
Admin
‎2021-01-22 04:32 PM

Are you using an integration via RADIUS or via SAML?

0 Kudos
Daniel_Kavan
Advisor
‎2021-01-25 05:39 AM
In response to PhoneBoy

RADIUS

0 Kudos
PhoneBoy
Admin
Admin
‎2021-01-25 08:49 AM
In response to Daniel_Kavan

Via RADIUS, it's probably an RFE to do that.
The Mobile Access portal in R80.40+ supports SAML authentication, which would show that notification since the authentication page would be from Okta directly.

0 Kudos
Daniel_Kavan
Advisor
‎2021-01-26 04:54 PM
In response to PhoneBoy

Yeah...

What would be nice would be to make an API call to OKTA after the user logs in to Okta DayUntilExpire and just show that to the user after they log into the portal.  One way might be to create a web application that makes an API call.  RFE! 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events