Check Point RADIUS integration flow

This topic illustrates and describes the Check Point RADIUS integration flow.

  1. The user signs in with a username and password.
  2. The gateway receives the data and forwards through RADIUS to Okta RADIUS Server Agent.
  3. The Okta RADIUS Server Agent forwards to Okta Identity Cloud.
  4. Okta Identify Cloud determines the authentication source and responds or optionally forwards to the on-premises directory agent.
  5. Optional: The agent sends the password to the user directory.
  6. Optional: The directory confirms the password.
  7. Optional: The directory agent confirms the password to Okta Identity Cloud.
  8. The Okta RADIUS Server Agent relays the challenge message to the gateway.
  9. The gateway displays a message for the user to select a factor.
  10. The user supplies the requested factor.
  11. Gateway receives data and forwards through RADIUS to Okta RADIUS Server Agent.
  12. RADIUS Server Agent sends to Okta Identity Cloud.
  13. Okta Identify Cloud evaluates the choice and triggers the appropriate response (push message sent).
  14. The push message is received and the user responds.
  15. A success message is returned to the Okta RADIUS Server Agent.
  16. A success message is returned to the gateway.
  17. The user is connected through a VPN client (I8).