<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>Checkpoint Browser-Based Authentication &#8211; Thegioifirewall</title>
	<atom:link href="https://thegioifirewall.com/tag/checkpoint-browser-based-authentication/feed/" rel="self" type="application/rss+xml" />
	<link>https://thegioifirewall.com</link>
	<description>Tường lửa bảo vệ doanh nghiệp, trung tâm thông tin và giá cả</description>
	<lastBuildDate>Sun, 15 May 2022 13:10:35 +0000</lastBuildDate>
	<language>vi</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=7.0</generator>

<image>
	<url>https://thegioifirewall.com/wp-content/uploads/vacif_icon-150x150.png</url>
	<title>Checkpoint Browser-Based Authentication &#8211; Thegioifirewall</title>
	<link>https://thegioifirewall.com</link>
	<width>32</width>
	<height>32</height>
</image> 
	<item>
		<title>Checkpoint Firewall: Hướng dẫn cấu hình tính năng Browser-Based Authentication (Captive portal) xác thực người dùng truy cập Internet.</title>
		<link>https://thegioifirewall.com/checkpoint-firewall-huong-dan-cau-hinh-tinh-nang-browser-based-authentication-captive-portal-xac-thuc-nguoi-dung-truy-cap-internet/</link>
					<comments>https://thegioifirewall.com/checkpoint-firewall-huong-dan-cau-hinh-tinh-nang-browser-based-authentication-captive-portal-xac-thuc-nguoi-dung-truy-cap-internet/#respond</comments>
		
		<dc:creator><![CDATA[John]]></dc:creator>
		<pubDate>Sun, 15 May 2022 13:10:34 +0000</pubDate>
				<category><![CDATA[Checkpoint Firewall]]></category>
		<category><![CDATA[Browser-Based Authentication]]></category>
		<category><![CDATA[Browser-Based Authentication (Captive portal)]]></category>
		<category><![CDATA[Captive portal]]></category>
		<category><![CDATA[Checkpoint Browser-Based Authentication]]></category>
		<guid isPermaLink="false">https://www.thegioifirewall.com/?p=15656</guid>

					<description><![CDATA[1.Overview Với tính năng Browser-Based Authentication trên Checkpoint sử dụng giao diện web để xác thực người dùng trước khi họ có thể truy cập tài nguyên mạng hoặc Internet. Khi người dùng cố gắng truy cập một tài nguyên được bảo vệ, họ phải đăng nhập xác thực để tiếp tục truy cập. 2. [&#8230;]]]></description>
										<content:encoded><![CDATA[
<p class="wp-block-paragraph"><strong>1.Overview</strong></p>



<p class="wp-block-paragraph">Với tính năng <strong>Browser-Based Authentication</strong> trên Checkpoint sử dụng giao diện web để xác thực người dùng trước khi họ có thể truy cập tài nguyên mạng hoặc Internet. Khi người dùng cố gắng truy cập một tài nguyên được bảo vệ, họ phải đăng nhập xác thực để tiếp tục truy cập.</p>



<p class="wp-block-paragraph"><strong>2. Network Diagram.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img fetchpriority="high" decoding="async" width="876" height="347" src="https://thegioifirewall.com/wp-content/uploads/image-4239.png" alt="" class="wp-image-15657" srcset="https://thegioifirewall.com/wp-content/uploads/image-4239.png 876w, https://thegioifirewall.com/wp-content/uploads/image-4239-300x119.png 300w, https://thegioifirewall.com/wp-content/uploads/image-4239-768x304.png 768w" sizes="(max-width: 876px) 100vw, 876px" /></figure></div>



<p class="wp-block-paragraph">Bài viết hôm nay sẽ hướng dẫn các bạn cấu hình tính năng <strong>Browser-Based Authentication</strong> trên Checkpoint Firewall để xác thực, cũng như tạo các policy theo người dùng trước khi truy cập Internet.</p>



<p class="wp-block-paragraph"><strong>3. Hướng dẫn cấu hình.</strong></p>



<p class="wp-block-paragraph"><strong>Bước 1: Cấu hình Browser-Based Authentication</strong>.</p>



<p class="wp-block-paragraph">Để enable tính năng <strong>Browser-Based Authentication</strong> trên giao diện quản trị của <strong>Checkpoint Firewall &gt; Access Policy &gt; User Awareness &gt; Blade Control &gt; Click chọn ON User Awareness. </strong></p>



<p class="wp-block-paragraph">Dưới phần<strong> Policy Configuration &gt;</strong> click chọn <strong>Browser-Based Authentication</strong> &gt; click <strong>Configure.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img decoding="async" width="624" height="252" src="https://thegioifirewall.com/wp-content/uploads/image-4240.png" alt="" class="wp-image-15658" srcset="https://thegioifirewall.com/wp-content/uploads/image-4240.png 624w, https://thegioifirewall.com/wp-content/uploads/image-4240-300x121.png 300w" sizes="(max-width: 624px) 100vw, 624px" /></figure></div>



<p class="wp-block-paragraph">Trong <strong>Identification tab: </strong></p>



<p class="wp-block-paragraph">Bạn có thể chọn <strong>Block unauthenticated users when the captive portal is not applicable</strong> cho các user chưa được xác thực.</p>



<p class="wp-block-paragraph">S<strong>pecific destinations: </strong>Chọn <strong>Internet.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img decoding="async" width="533" height="270" src="https://thegioifirewall.com/wp-content/uploads/image-4241.png" alt="" class="wp-image-15659" srcset="https://thegioifirewall.com/wp-content/uploads/image-4241.png 533w, https://thegioifirewall.com/wp-content/uploads/image-4241-300x152.png 300w" sizes="(max-width: 533px) 100vw, 533px" /></figure></div>



<p class="wp-block-paragraph">Chuyển qua <strong>Customization</strong>&nbsp;tab: Bạn có thể để mặc định, hoặc có thể dùng logo khác theo ý muốn bằng cách click chọn <strong>Upload.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="529" height="356" src="https://thegioifirewall.com/wp-content/uploads/image-4242.png" alt="" class="wp-image-15660" srcset="https://thegioifirewall.com/wp-content/uploads/image-4242.png 529w, https://thegioifirewall.com/wp-content/uploads/image-4242-300x202.png 300w" sizes="auto, (max-width: 529px) 100vw, 529px" /></figure></div>



<p class="wp-block-paragraph">Chuyển qua <strong>Advanced</strong>&nbsp;tab:</p>



<p class="wp-block-paragraph"><strong>Portal Address</strong>: Điền địa chỉ IP sẽ dùng để làm trang xác thực user.</p>



<p class="wp-block-paragraph"><strong>Session timeout</strong>: Cài đặt thời gian user có thể truy cập network hoặc Internet trước khi cần xác thực lại.</p>



<p class="wp-block-paragraph">Sau cùng click <strong>Apply.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="529" height="282" src="https://thegioifirewall.com/wp-content/uploads/image-4243.png" alt="" class="wp-image-15661" srcset="https://thegioifirewall.com/wp-content/uploads/image-4243.png 529w, https://thegioifirewall.com/wp-content/uploads/image-4243-300x160.png 300w" sizes="auto, (max-width: 529px) 100vw, 529px" /></figure></div>



<p class="wp-block-paragraph"><strong>Bước 2: Tạo Users.</strong></p>



<p class="wp-block-paragraph">Trong giao diện quản trị của <strong>Checkpoint Firewall &gt; User &amp; Objects &gt; User Awareness &gt;User &gt; New &gt; Local User.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="705" height="163" src="https://thegioifirewall.com/wp-content/uploads/image-4244.png" alt="" class="wp-image-15662" srcset="https://thegioifirewall.com/wp-content/uploads/image-4244.png 705w, https://thegioifirewall.com/wp-content/uploads/image-4244-300x69.png 300w" sizes="auto, (max-width: 705px) 100vw, 705px" /></figure></div>



<p class="wp-block-paragraph">Trong <strong>Remote Access</strong> tab: Điền các thông số như hình dưới. Click <strong>Apply.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="532" height="479" src="https://thegioifirewall.com/wp-content/uploads/image-4245.png" alt="" class="wp-image-15663" srcset="https://thegioifirewall.com/wp-content/uploads/image-4245.png 532w, https://thegioifirewall.com/wp-content/uploads/image-4245-300x270.png 300w" sizes="auto, (max-width: 532px) 100vw, 532px" /></figure></div>



<p class="wp-block-paragraph">Ở đây mình tạo 2 user là <strong>John</strong> và <strong>Steven.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="708" height="168" src="https://thegioifirewall.com/wp-content/uploads/image-4246.png" alt="" class="wp-image-15664" srcset="https://thegioifirewall.com/wp-content/uploads/image-4246.png 708w, https://thegioifirewall.com/wp-content/uploads/image-4246-300x71.png 300w" sizes="auto, (max-width: 708px) 100vw, 708px" /></figure></div>



<p class="wp-block-paragraph"><strong>Bước 3: Kiểm tra cấu hình</strong>.</p>



<p class="wp-block-paragraph">Bạn sử dụng máy tính trong mạng LAN của Checkpoint thử truy cập các trang web thì sẽ xuất hiện 1 trang web của Checkpoint yêu cầu xác thực thông tin người dùng trước khi được truy cập Internet.</p>



<p class="wp-block-paragraph">Bạn điền <strong>Username và Password</strong> của <strong>John</strong> đã tạo ở bước 2. Click <strong>Log In.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="601" height="394" src="https://thegioifirewall.com/wp-content/uploads/image-4247.png" alt="" class="wp-image-15665" srcset="https://thegioifirewall.com/wp-content/uploads/image-4247.png 601w, https://thegioifirewall.com/wp-content/uploads/image-4247-300x197.png 300w" sizes="auto, (max-width: 601px) 100vw, 601px" /></figure></div>



<p class="wp-block-paragraph">Click chọn &#8220;<strong>I have read and agreed to the terms and conditions</strong>&#8220;. Click <strong>Next.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="624" height="281" src="https://thegioifirewall.com/wp-content/uploads/image-4248.png" alt="" class="wp-image-15666" srcset="https://thegioifirewall.com/wp-content/uploads/image-4248.png 624w, https://thegioifirewall.com/wp-content/uploads/image-4248-300x135.png 300w" sizes="auto, (max-width: 624px) 100vw, 624px" /></figure></div>



<p class="wp-block-paragraph">Khi đã xác thực thành công bạn sẽ truy cập internet bình thường. Sẽ hiện thông báo thời gian bạn có thể truy cập Internet bình thường trước khi cần phải xác thực lại. </p>



<p class="wp-block-paragraph"><strong>Note: Bạn không được tắt trang xác thực này để duy trì việc truy cập Internet.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="593" height="418" src="https://thegioifirewall.com/wp-content/uploads/image-4249.png" alt="" class="wp-image-15667" srcset="https://thegioifirewall.com/wp-content/uploads/image-4249.png 593w, https://thegioifirewall.com/wp-content/uploads/image-4249-300x211.png 300w" sizes="auto, (max-width: 593px) 100vw, 593px" /></figure></div>



<p class="wp-block-paragraph"><strong>Bước 4: Tạo Policy xác thực theo User.</strong></p>



<p class="wp-block-paragraph">Tiếp theo mình sẽ tạo <strong>1 policy cấm truy cập facebook </strong>đối với user <strong>John.</strong></p>



<p class="wp-block-paragraph">Trên giao diện quản trị của <strong>Checkpoint Firewall &gt; User &amp; Objects &gt; Network Resources &gt;Network Object Groups &gt; New</strong>.</p>



<p class="wp-block-paragraph">Điền tên cho <strong>Network Object Groups</strong> <strong>(Ex: Block_FB_VN) &gt; New &gt; Type: Domain Name &gt; Domain: Facebook.com</strong>. Click <strong>Apply.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="873" height="321" src="https://thegioifirewall.com/wp-content/uploads/image-4250.png" alt="" class="wp-image-15668" srcset="https://thegioifirewall.com/wp-content/uploads/image-4250.png 873w, https://thegioifirewall.com/wp-content/uploads/image-4250-300x110.png 300w, https://thegioifirewall.com/wp-content/uploads/image-4250-768x282.png 768w" sizes="auto, (max-width: 873px) 100vw, 873px" /></figure></div>



<p class="wp-block-paragraph">Để tạo Policy bạn đi đến <strong>Access Policy &gt; Firewall &gt; Policy &gt; New &gt; On Top.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="715" height="182" src="https://thegioifirewall.com/wp-content/uploads/image-4251.png" alt="" class="wp-image-15669" srcset="https://thegioifirewall.com/wp-content/uploads/image-4251.png 715w, https://thegioifirewall.com/wp-content/uploads/image-4251-300x76.png 300w" sizes="auto, (max-width: 715px) 100vw, 715px" /></figure></div>



<p class="wp-block-paragraph">Trong phần <strong>Source: </strong>chọn <strong>User tab &gt; chọn John</strong>.</p>



<p class="wp-block-paragraph">D<strong>estination:</strong> chọn <strong>Network Object Groups</strong> <strong>(Ex: Block_FB_VN)</strong>.</p>



<p class="wp-block-paragraph"><strong>Action:</strong> chọn <strong>Block</strong>.</p>



<p class="wp-block-paragraph">Click <strong>Apply.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="691" height="370" src="https://thegioifirewall.com/wp-content/uploads/image-4252.png" alt="" class="wp-image-15670" srcset="https://thegioifirewall.com/wp-content/uploads/image-4252.png 691w, https://thegioifirewall.com/wp-content/uploads/image-4252-300x161.png 300w" sizes="auto, (max-width: 691px) 100vw, 691px" /></figure></div>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="624" height="278" src="https://thegioifirewall.com/wp-content/uploads/image-4253.png" alt="" class="wp-image-15671" srcset="https://thegioifirewall.com/wp-content/uploads/image-4253.png 624w, https://thegioifirewall.com/wp-content/uploads/image-4253-300x134.png 300w" sizes="auto, (max-width: 624px) 100vw, 624px" /></figure></div>



<p class="wp-block-paragraph">Đã tạo xong policy chặn truy cập facebook với user John.</p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="704" height="170" src="https://thegioifirewall.com/wp-content/uploads/image-4254.png" alt="" class="wp-image-15672" srcset="https://thegioifirewall.com/wp-content/uploads/image-4254.png 704w, https://thegioifirewall.com/wp-content/uploads/image-4254-300x72.png 300w" sizes="auto, (max-width: 704px) 100vw, 704px" /></figure></div>



<p class="wp-block-paragraph">K<strong>iểm tra:</strong> Xác thực với user John và thử truy cập facebook, kết quả là không thể truy cập được. Nhưng các trang web khác vẫn truy cập bình thường.</p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="533" height="283" src="https://thegioifirewall.com/wp-content/uploads/image-4255.png" alt="" class="wp-image-15673" srcset="https://thegioifirewall.com/wp-content/uploads/image-4255.png 533w, https://thegioifirewall.com/wp-content/uploads/image-4255-300x159.png 300w" sizes="auto, (max-width: 533px) 100vw, 533px" /></figure></div>



<p class="wp-block-paragraph">Kiểm tra Log trên Checkpoint Firewall. Các traffic user John đều bị <strong>Drop.</strong></p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="777" height="219" src="https://thegioifirewall.com/wp-content/uploads/image-4256.png" alt="" class="wp-image-15674" srcset="https://thegioifirewall.com/wp-content/uploads/image-4256.png 777w, https://thegioifirewall.com/wp-content/uploads/image-4256-300x85.png 300w, https://thegioifirewall.com/wp-content/uploads/image-4256-768x216.png 768w" sizes="auto, (max-width: 777px) 100vw, 777px" /></figure></div>



<p class="wp-block-paragraph">Tiếp tục <strong>Login bằng user Steven</strong> thì truy cập facebook bình thường.</p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="525" height="340" src="https://thegioifirewall.com/wp-content/uploads/image-4257.png" alt="" class="wp-image-15675" srcset="https://thegioifirewall.com/wp-content/uploads/image-4257.png 525w, https://thegioifirewall.com/wp-content/uploads/image-4257-300x194.png 300w" sizes="auto, (max-width: 525px) 100vw, 525px" /></figure></div>



<p class="wp-block-paragraph"> Kiểm tra Log trên Checkpoint Firewall. Log thể hiện user John đã log out và user Steven đã login thành công.</p>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="835" height="231" src="https://thegioifirewall.com/wp-content/uploads/image-4258.png" alt="" class="wp-image-15676" srcset="https://thegioifirewall.com/wp-content/uploads/image-4258.png 835w, https://thegioifirewall.com/wp-content/uploads/image-4258-300x83.png 300w, https://thegioifirewall.com/wp-content/uploads/image-4258-768x212.png 768w" sizes="auto, (max-width: 835px) 100vw, 835px" /></figure></div>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="691" height="345" src="https://thegioifirewall.com/wp-content/uploads/image-4259.png" alt="" class="wp-image-15677" srcset="https://thegioifirewall.com/wp-content/uploads/image-4259.png 691w, https://thegioifirewall.com/wp-content/uploads/image-4259-300x150.png 300w" sizes="auto, (max-width: 691px) 100vw, 691px" /></figure></div>



<div class="wp-block-image"><figure class="aligncenter size-full"><img loading="lazy" decoding="async" width="689" height="369" src="https://thegioifirewall.com/wp-content/uploads/image-4260.png" alt="" class="wp-image-15678" srcset="https://thegioifirewall.com/wp-content/uploads/image-4260.png 689w, https://thegioifirewall.com/wp-content/uploads/image-4260-300x161.png 300w" sizes="auto, (max-width: 689px) 100vw, 689px" /></figure></div>
]]></content:encoded>
					
					<wfw:commentRss>https://thegioifirewall.com/checkpoint-firewall-huong-dan-cau-hinh-tinh-nang-browser-based-authentication-captive-portal-xac-thuc-nguoi-dung-truy-cap-internet/feed/</wfw:commentRss>
			<slash:comments>0</slash:comments>
		
		
			</item>
	</channel>
</rss>
