Centralized user management throughout the enterprise
Broad support; ease of management
Integrated into Check Point Software Blade Architecture
The Check Point User Directory Software Blade leverages LDAP servers to obtain identification and security information about network users, eliminating the risks associated with manually maintaining and synchronizing redundant data stores.
With the Software Blade, Check Point security gateways become full LDAP clients which communicate with LDAP servers to obtain identification and security information about network users. The User Directory Software Blade leverages the flexibility of the LDAP protocol by extending the schema to include all necessary user-level security elements. This information is then available not only to Check Point security gateways to enforce enterprise security policy, but to any LDAP-compliant application, enabling centralized user management throughout the enterprise.
The User Directory Software Blade facilitates centralized user management throughout the enterprise by enforcing enterprise security policy on any LDAP-compliant application. With SmartDashboard, an easy-to-use GUI, administrators can view, modify and create users, groups and other objects.
The Check Point User Directory Software Blade supports leading LDAP solutions, including Microsoft Active Directory.
The User Directory Software Blade is integrated into the Software Blade Architecture. It can be easily and rapidly activated on existing Check Point Security Management server saving time and reducing costs by leveraging existing security infrastructure.
Full integration into the modular Software Blade Architecture allows for rapid and easy activation on any Check Point Security Management server.
|LDAP vendor support||Microsoft, Novell, Red Hat, Sun Microsystems, and other OPSEC certified LDAP partners|
|LDAP Protocols||LDAPS and LDAP|
|Predefined, customizable profiles||Microsoft, Novell, Netscape|
|LDAP group support||Static and Dynamic|
|Extended schema||Check Point extended schema to support password management and other vendor-specific attributes|
|Redundancy||Ability to query multiple LDAP servers and ability to distribute users across multiple LDAP servers|
|Graphical interface||View, modify, and create users, groups, and other objects through an easy-to-use GUI.|
|Internet Protocol Versions||IPv6 and IPv4|