I got asked few times on this rather rarely used feature, and as surfing through the Checkpoint docs can be a bit tedious, I‘ll put it here. SSH user authentication against external server, in this case using Radius protocol, is possible but only if you have VPN Pro featured firewall and accordingly VPN Pro license (Advanced Networking Blade if using Blades). Then using firewall’s WebGUI you will have an option to configure external Radius server to authenticate operating system users. See screenshots below.
Follow me on TwitterBlogroll
Most popular posts
- Change password for console expert user Checkpoint Splat
- Checkpoint SecurePlatform networking FAQ
- Checkpoint VPN debug cheat sheet
- Cisco ASA user privilege separation
- Creating Secure Passwords
- Debug VPN in Fortigate – seeing is believing
- fw monitor command reference
- Packet sniffer in IOS
- Ping – setting don't fragment bit in Linux/FreeBSD/Solaris/Cisco/Juniper
- Visio stencils for Cisco, Juniper, Fortinet, Checkpoint, Avaya
- You can't set duplex/speed settings of the Fortigate interfaces?
0 Responses
Stay in touch with the conversation, subscribe to the RSS feed for comments on this post.