VIP (Validation ID Protection)

 View Only
  • 1.  VIP Authentication Service and Checkpoint VPN

    Posted Jul 18, 2014 10:18 AM

    Hello guys,

     

    I am trying to integrate Checkpoint VPN with the VIP service for authentication. However I am having some problems.

    Checkpoint gateway and the VIP gateway are directly connected in the same network.

    On the Checkpoint gateway I defined a user that should use a RADIUS server as authentication method. I created a "User ID - LDAP Password - Security Code" type Validation Server within the VIP management console running on port 1645. I initiate VPN connection and Checkpoint gives me error "RADIUS servers not responding". Using tcpdump I can see that authentication request packets are sent from the Checkpoint gateway. The log of the VPN module gives " RADIUS Servers Cannot Be Reached. Dropping Reques" message. 

     

    I have verified the preshared key for the RADIUS communication. Using some RADUIS testing tool, I verified that the server is responding to authentication request messages. So can anyone give me a tip on what is wrong in this setup?

     

    Thanks!

     



  • 2.  RE: VIP Authentication Service and Checkpoint VPN

    Posted Aug 11, 2014 02:27 AM

    Hi

    Why you are using Radius port 1645 ? Radius port is 1812 so if you need to modify it also in validation server as well.

     

    Regards



  • 3.  RE: VIP Authentication Service and Checkpoint VPN

    Posted Sep 23, 2014 03:22 AM

    A unified solution providing both two-factor and risk-based token-less authentication, VIP is based on open standards and can easily integrate into enterprise applications.