We are in the process of integrating cisco ISE with Checkpoint using Tacacs+.We have configured and able to authenticate successfully, but having issue with authorization.
Currently configured in device:
Type= MANDATORY Name = CheckPoint-SuperUser-Access Value=1
we need to create two roles 'TACP-0' and 'TACP-15' but how do we map this on the TACACS+ server.
Tried searching related KB article in cisco as well as in checkpoint but no luck. can anyone suggest me solution regarding this.
Not great experience i had same, the read-only we have created Local Checkpoint, admin will use ISE as remidation we did.
R80 we are using, since we had only 2 users, not much bother to look later to fix the issue, since more of our admin working with ISE and LDAP auth.
check this may help you :
***** Rate All Helpful Responses *****
How to Ask The Cisco Community for Help
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: