- Products
- Learn
- Local User Groups
- Partners
- More
On-Premise SD-WAN Management
Register HereWhat's New in R82.10?
Watch Here AI Security Masters E8:
Claude Mythos: New Era in Cyber Security
CheckMates Go:
The Moment Before
Hi, Currently we are maintaining local users to log in to Remote VPN client, customer wants to enable two factor (Dynamic ID with third party SMS provider) for specific users only. Is it possible to enable for specific user group with dynamic ID?
I had been wondering exact same thing for a while now, so Im glad you posted this question...lets see if we can get a confirmation.
You select the login scheme before entering the username, so it's not possible to configure different login schemes for different groups.
This is my understanding as well, the scope of DynamicID is the gateway or cluster object, not user or groups.
You can use multiple authentication settings per gateway. Edit the gateway or cluster object, VPN Clients, Authentication, "multiple authentication client settings", create profiles for the different authentication factors.
Correct, however OP wants to do different authentication schemes per user / group. For example Group A - Username & Password, Group B - Username & Password + SecureID.
You can change the authentication profile during site creation or afterwards
The point is the GW to force me to use this profile based on my user/group, not what I configured when creating the site.
OP didn't mention anything about the gateway enforcing this. He just wants to enable DynamicID for specific users. This is possible by changing the site for those users and then setting "predefined_sites_only" to true via the gateways ttm file.
What if you use SNX?
and how will you set profile 1 to be for user group1 and profile2 for group2?
Leaderboard
Epsum factorial non deposit quid pro quo hic escorol.
| User | Count |
|---|---|
| 3 | |
| 2 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 |
Thu 09 Jul 2026 @ 10:00 AM (CEST)
Schutz souveräner Workloads: Check Point & die AWS European Sovereign CloudThu 09 Jul 2026 @ 11:00 AM (CEST)
The Cloud Architects Series: Check Point Edge Protection SD-WAN & SASEThu 09 Jul 2026 @ 11:00 AM (EDT)
Tips and Tricks 2026 #9 - What's New with Check Point Email SecurityFri 10 Jul 2026 @ 11:00 AM (IDT)
CheckMates Live Netherlands - Sessie 48: Nieuwe Check Point Workspace SecurityTue 14 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E11: READY OR NOT: Securing the AI Enterprise 3/5 - AI Workforce SecurityThu 09 Jul 2026 @ 11:00 AM (EDT)
Tips and Tricks 2026 #9 - What's New with Check Point Email SecurityFri 10 Jul 2026 @ 11:00 AM (IDT)
CheckMates Live Netherlands - Sessie 48: Nieuwe Check Point Workspace SecurityTue 14 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E11: READY OR NOT: Securing the AI Enterprise 3/5 - AI Workforce SecurityThu 30 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E12: READY OR NOT: Securing the AI Enterprise 4/5 - AI GatewayThu 20 Aug 2026 @ 10:00 AM (PDT)
AI Security Masters E13: READY OR NOT: Securing the AI Ent 5/5 - AI Research & Threat LandscapeAbout CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY