Configuring Local and Remote System Administrators
Quantum Spark 1500, 1600 and 1800 Appliance Series R80.20.40 Locally Managed Administration Guide | 258
2. Add these lines in the vendor.ini file on the RADIUS server (keep in alphabetical order with the
other vendor products in this file):
vendor-product = Quantum Spark Appliance
dictionary = nokiaipso
ignore-ports = no
port-number-usage = per-port-type
help-id = 2000
3. Add this line in the dictiona.dcm file:
"@checkpoint.dct"
4. Add this Check Point Vendor-Specific Attribute to users in your RADIUS server user configuration
file:
CP-Gaia-User-Role = <role>
Where
<role>
allowed values are:
Administrator Role Value
Super Admin
adminRole
Read only
monitorrole
Networking Admin
networkingrole
Mobile Admin
mobilerole
Configuring a FreeRADIUS server for non-local appliance users
1. Create the dictionary file dictionary.checkpoint in the /etc/freeradius/ on the RADIUS
server.
Add these lines in the dictionary.checkpoint file:
#Check Point dictionary file for FreeRADIUS AAA server
VENDOR CheckPoint 2620
ATTRIBUTE CP-Gaia-User-Role 229 string
CheckPoint
ATTRIBUTE CP-Gaia-SuperUser-Access 230 integer
CheckPoint
2. Add this line in the /etc/freeradius/dictionary file
"$INCLUDE dictionary.checkpoint"
3. Add thisCheck Point Vendor-Specific Attribute to users in your RADIUS server user configuration
file:
CP-Gaia-User-Role = <role>
Where
<role>
is the name of the administrator role that is defined in the WebUI.
To Next Page
Loading...
Need help?
General
