This configuration doesn't support inline self-service enrollment. Once configured, Duo sends your users an automatic authentication request via Duo Push notification to a mobile device or phone call after successful primary login. If you are already running a Duo Authentication Proxy server in your environment, you can generally use that existing host for additional applications, appending the new configuration sections to the current config. This Duo proxy server also acts as a RADIUS server - there's usually no need to deploy a separate additional RADIUS server to use Duo. To integrate Duo with your Check Point Mobile Access VPN, you will need to install a local proxy service on a machine within your network. Please refer to Duo Knowledge Base article 6328 for more information and suggested workarounds. This issue was resolved in version 5.0.2.
Which one you can use depends on your configuration in Gateway Properties > VPN Clients.There is a known issue Duo Authentication Proxy versions 5.0.0 and 5.0.1 and Check Point RADIUS Authentication. Just klick around in Smart Dashboard to get to know the feature and then klick Cancel to discard you changes.Īs already mentioned above: the license includes all clients. There are also some extra settings with Mobile Access which you can configure in gateway properties. The feature Mobile Access is needed if you want the Mobile Access portal and you also get an extra Mobile Access policy which you can use for clients. But it's used by all Remote Access solutions. I know it's a little confusing because the name of the license is "Mobile Access". This license will be used for clientless VPN and VPN clients. If you need more, you have to buy a seperate Mobile Access license for more users (if I remember correctly there are licenses for 50 users, 100, 500, 1000 and unlimited - not sure though).
The Remote Access license is also limited to five concurrent users. After buying a gateway, you have some licenses included (like Mobile Access, Threat Prevention.) but limited for one year. This is already included with the basic functions.įor Remote Access you need a license.
0 kommentar(er)
