- Products
- Learn
- Local User Groups
- Partners
- More
Welcome to Maestro Masters!
Talk to Masters, Engage with Masters, Be a Maestro Master!
Join our TechTalk: Malware 2021 to Present Day
Building a Preventative Cyber Program
Be a CloudMate!
Check out our cloud security exclusive space!
Check Point's Cyber Park is Now Open
Let the Games Begin!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
CheckFlix!
All Videos In One Space
Hello,
I 've configured the Checkpoint VPN client and it's works for the users defined as checkpoint local userid.
Now I need to move the Auth to the Customer AD. I have a Ldap Account Unit that point the customer AD so how I can set the Checkpoint to send the auth process to the Ldap AU?
Provided that everything is working with your remote access IPSEC VPN config / LDAP account unit, the next step to 'enable LDAP authentication' would be to create an access role, bind it to an AD user or group, and add that access role to your access policy. This is assuming the default authentication mechanism of username + password.
By doing this, you will enable the gateway to successfully match a user search against a rule that allows them to connect. I attached an example from my lab where I added a group from AD to an access role.
See admin guide info on:
Access roles:
https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_SecurityManagement_AdminGuide/Topi...
Retrieving Information from a User Directory Server:
https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_SecurityManagement_AdminGuide/Topi...
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY