Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
LostBoY
Advisor

R80.40 SmartConsole RADIUS Integration with Cisco ISE

I have configured SmartConsole users to authenticate with Cisco ISE via RADIUS protocol..for this i had to create users in SmartConsole itself and then map it to a certain authorization profile like write/ro/super user.. these then authenticate with Cisco ISE user base...however, is there anyway i  do not have to create users in SmartConsole and login authentication is directly controlled via ISE ?

I have done this for Checkpoint Gateway CLI access where i dont have to create any users in CLI and they directly authenticate with ISE database.. but cant figure it out for SmartConsole users.. any help is appreciated.

0 Kudos
3 Replies
PhoneBoy
Admin
Admin

As far as I know, no.

S_E_
Advisor

Hi,
raised the same question multiple times to our Professional Service.
There was always a "not possible with CheckPoint".
Independent which AAA service you are running on the backend, there is always the overhead to create admin accounts in SmartConsole (or API call) as well.
Regards

Chris_Atkinson
Employee Employee
Employee

I see both sides to this, specifically I have some customers that actually prefer it this way as it prevents people with AD or Radius access just provisioning themselves access to logon to SmartConsole...

 

CCSM R77/R80/ELITE
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events