This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
the_rock
Legend
Legend
‎2022-02-16 04:11 PM

SAML identity provider auth issue

Hey team,

I really hope someone can help me with suggestion/advice on this. My colleague and I tried to test this for a customer and we cant get it working no matter what we do. I know I got this working with another client few months back by following same procedure as below:

SAML authentication in Remote Access VPN clients (checkpoint.com)

Im testing this in lab with 2 single gateway on R81.10 jumbo 30. For context, IP of gateway is 172.16.10.78...now, we set up identity provider and all shows green in smart console. We then made sure remote access is set up right, auth method is there as per document and it does show when trying to connect via vpn client, BUT, the actual page never comes up, though log in works on identity provider side that my colleague set up with my email address.

Also, I could be mistaken when I say this, but Im pretty certain below page should work, but it does not...

https://172.16.10.78/saml-vpn

I attached some screenshot for reference. If someone can give any guidance, I would be very grateful!

Thanks as always!

Preview file
127 KB
Preview file
38 KB
Preview file
54 KB
Preview file
32 KB
0 Kudos
3 Replies
PhoneBoy
Admin
Admin
‎2022-02-21 08:03 AM

I assume you've contacted the TAC on this, right?
Just looking at the error when you access the saml-vpn link, it seems the backend that processes the SAML connection isn't registered with Multi-Portal.

0 Kudos
the_rock
Legend
Legend
‎2022-02-21 02:50 PM
In response to PhoneBoy

Yep, I have TAC case open, we have remote tomorrow.

 

0 Kudos
Nep_001
Explorer
‎2022-06-22 08:56 AM
In response to the_rock

Hello,

Did you resolve the issue? can share the solution? we also, encountering the same issue with R80.40 take 158 integration with OKTA SAML. 

thanks.

0 Kudos