Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
babicmilan
Collaborator

Quantum Spark 1550 - Two Factor Authentication

Hello, I want to configure 2FA Two Factor Authentication for Remote Access VPN users. I have some internal users created on Check Point 1550 gateway and AD group where are some users which use AD credentials to authenticate. Attached pictures for clarity.

 

For internal users I have option to configure Email, Phone Number, ...

Where I configure that options (Email, Phone Numbers) for AD users to use Two Factor Authentications?

I suppose on Microsoft AD server?

0 Kudos
4 Replies
G_W_Albrecht
Legend Legend
Legend

See https://sc1.checkpoint.com/documents/SMB_R81.10.X/AdminGuides_Locally_Managed/EN/Content/Topics/Conf...

 

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
babicmilan
Collaborator

Hello, I saw it but there is no explanation where to put informations like Email, Phone Number for AD users so that AD users use Two Factor Authentications when logged over Remote Access VPN?

I suppose it must be on Microsoft AD domain controller. Am I right?

0 Kudos
G_W_Albrecht
Legend Legend
Legend

All AD users are created or changed on MS DC, so it must be defined on AD of course...

 

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
babicmilan
Collaborator

Thank you very much for explanation. I have some issues regarding 2FA for AD users, for local users I get passkey on email and SMS, for AD users I get passkey only on email. I don't know where is the problem Check Point gateway or MS DC.

My next question, is it possible to add two AD servers for the same domain for example primary and secondary. When I try to add secondary one I get some Invalid input that "Domain already exists" (that means I can't add two AD servers for same domain with different IP addresses). Attached pictures.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events