This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Can somebody show how to configure ACS 5.2 for device administration of Checkpoint firewalls and security management servers?
I have created a "Authorization Profile" with a new "Shell Profile" policy.
In the policy i manualy entered this attributes:
"adminRole" is a Checkpoint default role. You can create your own role and change these in your Shell Profile if needed.
The attribute are set to mandatory for this Shell Profile.
Thanks for the reply, this is for firewall gateway running IPSO, but how about the Security management server for checkpoint?
we use TACACS only to authenticate user against our Security Management Server, but for authorization there is a local user configured which refers to the TACACS user.
If you use Provider-1, look at page 54.
In Cisco ACS, you configure an "Authorization Profile" and add only the Shell Profile "Permit Access"
Thanks for the reply, but i dont have enough privilege to access the link. will u able to share it?