CheckPoint Firewall Integration

The compromise of user credentials poses a risk of unauthorized access to accounts. Nowadays, providing additional security measures to solve such issues is possible with the SecTrail authentication server.

In this document, you can find information about two-factor authentication via single-use passwords (SMS, email, soft OTP) for CheckPoint Firewall using SecTrail.

SecTrail ile CheckPoint Firewall Entegrasyonu

1. 1. Credentials are entered on the login screen of the CheckPoint Firewall.
   2. The information (username and password) is sent as a RADIUS request to the SecTrail server via the CheckPoint Firewall.
   3. SecTrail performs user authentication (such as Active Directory, Database, etc.) and sends the RADIUS response to CheckPoint Firewall. If the authentication is successful, SecTrail sends a single-use password to the address obtained from the user information in the database (AD, LDAP, Local) via SMS or email. An external SMS proxy or email server is used for sending. In case of using software key (SoftOTP), the password is generated through the SecTrail Authenticator mobile application.
   4. If the response is successful, CheckPoint Firewall presents the user with a second screen.
   5. The user enters the one-time password generated by SMS, E-Mail or SecTrail Authenticator mobile application transmitted by SecTrail,
   6. CheckPoint Firewall sends the single-use password to SecTrail as a RADIUS request
   7. SecTrail verifies the single-use password and sends the response to CheckPoint Firewall.
   8. If the response is successful, CheckPoint Firewall allows the user access and starts the session.

Mobile Application Support

If you want to use SoftOTP, you can ensure your security through the SecTrail Authenticator mobile application.

You can download the SecTrail Authenticator application to your mobile device from the Apple App Store or Google Play Store.