This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Tassadar
Explorer
‎2020-02-25 01:53 AM

CP appliances LOM questions

Hello,

We are deploying tens of new CP appliances with the LOM and we have following questions:

1. We would like to use RADIUS authentication for access to the LOM. How is this implemented? If the RADIUS server is down, will the user be able to authenticate against LOM local database?

2. Is it possible to define network privilege for RADIUS users locally in the LOM interface?

3. Can somebody explain us the exact purpose of sysadmin user? This is what is in the LOM guide:

The sysadmin account can only log in to the LOM Console port on the appliance. It cannot use the Portal to configure LOM. By default, the LOM Portal is disabled.

We do not understand what LOM Console port means here.

Thank you.

0 Kudos
Reply
3 Replies
_Val_
Admin
Admin
‎2020-02-25 08:28 AM

What specific model are you deploying? Answers will vary. 

0 Kudos
Reply
Tassadar
Explorer
‎2020-02-27 12:37 AM
In response to _Val_

Hi,

Right now we are deploying 6500 (CPAP-SG6500).

Thank you.

0 Kudos
Reply
_Val_
Admin
Admin
‎2020-02-27 06:08 AM
In response to Tassadar

Please use this document for guidance: http://supportcontent.checkpoint.com/documentation_download?ID=32414

Now, some answers:

1. Use the linked admin guide to configure Radius authentication. Server has to be up for successful authentication of a radius account.
2. Use the admin guide.

3. There is a predefined local user on LOM card called sysadmin. You can reset and change the password for this account. However, this account is not shared with Gaia environment, so it can only log in to LOM environment. 


0 Kudos
Reply