We have dual user authentication configured through an external SMS gateway that sends SMS messages to pass the second authentication for access via Check Point Mobile.
We need to restrict SMS texting to users who are not in the LDAP Remote Users group.
We explicitly set the LDAP group in the Access Role, User Group, LDAP Group in the Check Point rule, and we also specified the LDAP group in the Remote Access object.
But users still get text messages and after entering a text message, access via Check Point Mobile disappears "Negotiation with site failed". Is there an option at Check Point to check the LDAP group first and if the user is found in the LDAP group, then an SMS message is sent to him afterwards?