Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
John_Ejaife
Participant

How do I add SecureGateway to Cisco ISE 2.4 using RADIUS?

I'm having trouble adding a Checkpoint firewall to ISE 2.4. I've been following a blog where the author claims to have successfully added it to ISE 2.1, (here http://mdtnets.blogspot.com/2016/07/checkpoint-gaia-radius-authentication.html).

 

In the part where he gets to "Authentication Policy" I assume it's been replaced by Policy Sets. Running into trouble setting up the conditional "If DEVICE:Device Type Equals Device Type#All Device Types#Checkpoint"

 

I can do the"if DEVICE:Device Type Equals: All Device Types" but am not given an option for any other parameters. Am I missing something here?

5 Replies
G_W_Albrecht
Legend
Legend

I think you ask questions concerning Cisco Configuration - but all i know is sk105542...

CCSE CCTE SMB Specialist
0 Kudos
Nüüül
Advisor

Hi,

Device Type "checkpoint" is not there by default. This has to be configured manually. (Out of the head Administration -> Network Resources)

More or less you only enter the IP Address of the Firewall and are then able to differentiate, who is sending the request.

More:

Cisco Identity Services Engine Administrator Guide, Release 2.4 - Manage Network Devices [Cisco Iden... 

Daniel

0 Kudos
John_Fleming
Advisor

John Ejaife (of Spikefish Solutions fame) just wrote up a complete walk through on this. This covers Cisco ISE 2.4 and shows creating a admin role and a noc role. Access is controlled via group membership in active directory.

Checkpoint + ISE + Active Directory integration

0 Kudos
PhoneBoy
Admin
Admin

I probably should have moved this thread into Appliances and Gaia‌ awhile ago Smiley Happy

0 Kudos
Enyi_Ajoku
Collaborator

Will this be the same steps on vsx. Particular for the NOC

Just asking as Web Access is disabled when VSX is enabled 

 

0 Kudos