Table of Contents
Advertisement
3. Add this Check Point Vendor-Specific Attribute to users in your RADIUS server user
configuration file:
CP-Gaia-User-Role = <group_name>
Where <group_name> is the name of the RADIUS group that is defined in the Check Point
Appliance WebUI.
To configure an
OpenRADIUS
1. Create the dictionary file dict.checkpoint in
/etc/openradius/subdicts/
on the RADIUS server:
# Check Point Gaia vendor specific attributes
# (Formatted for the OpenRADIUS RADIUS server.)
# Add this file to etc/openradius/subdicts/ and add the line
# "$include subdicts/dict.checkpoint" to etc/openradius/dictionaries
# right after dict.ascend.
$add vendor 2620 CheckPoint
$set default vendor=CheckPoint
len_ofs=1 len_size=1 len_adj=0
val_ofs=2 val_size=-2 val_type=String
nodec=0 noenc=0
$add attribute 229 CP-Gaia-User-Role
$add attribute 230 CP-Gaia-SuperUser-Access
val_size=4
2. Add the line
$include subdicts/dict.checkpoint
to
/etc/openradius/dictionaries
immediately after dict.ascend
3. Add this Check Point Vendor-Specific Attribute to users in your RADIUS server user
configuration file:
CP-Gaia-User-Role = <group_name>
Where <group_name> is the name of the RADIUS group that is defined in the Check Point
Appliance WebUI.
To log in as a Super User:
A user with super user permissions can use the Check Point Appliance shell to do system-level
operations, including working with the file system.
1. Connect to the Check Point Appliance platform using an SSH client or serial console client.
2. Log in to the clish shell using your user name and password.
3. Run Expert
4. Enter the expert password.
Check Point 1100/1200R/1400 Appliances Centrally Managed Administration Guide R77.20.70
server for non-local Check Point Appliance users:
space=RAD-VSA-STD
Appliance Configuration
val_type=Integer
|
97
Advertisement
Table of Contents
Need help?
Do you have a question about the CHECK POINT 1100 and is the answer not in the manual?