Skip to content

Check Point Integration Guide

Check Point Next Generation Firewalls

Integration steps

  1. Open object explorer

  2. Add new host, representing the server running Mideye server software.

  3. Add Mideye Server IP Address

Add RADIUS server

  1. Open object explorer and add a new RADIUS server.
  2. Enter an appropriate name.
  3. In the Host drop-down box, select the previously created host object.
  4. Enter the RADIUS shared secret defined in the Mideye Server for this client, if the Mideye Server has not been created yet choose a shared secret here that later will be added to the Mideye Server as well.
  5. Set the RADIUS version to 2.0.
  6. Make sure that the protocol type is set to PAP and that the service object selected reflect the port Mideye Server is listening on (RADIUS standard port is UDP/1812).
  7. Repeat the process if redundant servers are used.

Create RADIUS server group

  1. Create a RADIUS server group and add the server(s).
  2. add each of the Mideye Servers to the RADIUS Group.

Create and configure authentication method

  1. Edit the relevant gateway object and navigate to Mobile Access section.
  2. Under “Multiple Authentication Clients Settings”, add a new Authentication option for Mideye RADIUS authentication (remove any existing options if all clients should authenticate with Mideye two-factor authentication).

Change RADIUS timeout

The RADIUS timeout needs to be increased to 35 seconds to allow the user enough time to login.

  1. Open the “Global Properties” configuration from Smart Console.
  2. Navigate to “FireWall-1 -> Authentication -> RADIUS” in the left pane.
  3. Set radius_treant_num to "1".
  4. Set the radius_retrant_timeout value to “35”.
  5. Press OK and install policy on the gateway.

Add Check Point as a RADIUS client in the Mideye Server

See section RADIUS clients in the reference guide.