Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
jfelix
Explorer

Active Directory Based VPN on 1590 Local Managed Unit

Hi all,

Struggling to get remote access VPN working via Active Directory Authentication.   I have vpn working with local authentication. 

 

VPN is configured for l2tp. 

I can query to Active Directory to add groups into permissions, so the firewall is reading AD config okay.   

 

I have searched high and low on checkmates and checkpoint KB;s to try to find info on the setup, but all i am finding are posts  by users that have it already setup.   Reading the manuals on the unit don't spell out the config that is necessary, just that it is capable of it. 

 

Currently when i attempt to sign in to the VPN using an account on the configured AD, I get the attached error.

 

where am i going wrong?

0 Kudos
5 Replies
G_W_Albrecht
Legend
Legend

What happens if you use Check Point Endpoint Security VPN client instead ? 

0 Kudos
jfelix
Explorer

Yeah same error around unable to generate radius request

0 Kudos
G_W_Albrecht
Legend
Legend

I would contact TAC to get it resolved.

0 Kudos
Alan_Walker
Explorer

I have done this many times, by selecting Add - Active Directory Group, and select the group you want to use.

The group should have the allowed vpn users in it.  Or you can use all users if you do not want a group.

Your error shows a RADIUS auth problem.  Have you defined a RADIUS server also?

0 Kudos
jfelix
Explorer

No Radius Server configured at all.    The error combined with the fact i haven't configured a radius server is why i am posting & about to log a ticket.  As the error doesn't match the config.  

0 Kudos