- Products
- Learn
- Local User Groups
- Partners
- More
Check Point Jump-Start Online Training
Now Available on CheckMates for Beginners!
Why do Hackers Love IoT Devices so Much?
Join our TechTalk on Aug 17, at 5PM CET | 11AM EST
Welcome to Maestro Masters!
Talk to Masters, Engage with Masters, Be a Maestro Master!
ZTNA Buyer’s Guide
Zero Trust essentials for your most valuable assets
The SMB Cyber Master
Boost your knowledge on Quantum Spark SMB gateways!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
CheckFlix!
All Videos In One Space
Hello,
I 've configured the Checkpoint VPN client and it's works for the users defined as checkpoint local userid.
Now I need to move the Auth to the Customer AD. I have a Ldap Account Unit that point the customer AD so how I can set the Checkpoint to send the auth process to the Ldap AU?
Provided that everything is working with your remote access IPSEC VPN config / LDAP account unit, the next step to 'enable LDAP authentication' would be to create an access role, bind it to an AD user or group, and add that access role to your access policy. This is assuming the default authentication mechanism of username + password.
By doing this, you will enable the gateway to successfully match a user search against a rule that allows them to connect. I attached an example from my lab where I added a group from AD to an access role.
See admin guide info on:
Access roles:
https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_SecurityManagement_AdminGuide/Topi...
Retrieving Information from a User Directory Server:
https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_SecurityManagement_AdminGuide/Topi...
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY