https://community.checkpoint.com/t5/Cloud-Firewall/DataCenter-Object-Authentication-Failing/m-p/97350#M1905 <P>Hi,</P><P>&nbsp;</P><P>I am setting up a connection to an Azure datacenter via a datacenter object on the management server. I am using the Azure AD User Authentication method of connection &amp; have had a service account set up with the permissions required as shown in the guide without MFA applied to it, however when I test the connection Smartconsole shows the connection as failing due to an "Authentication Problem".</P><P>I have checked the AAD sign-in logs for that user and can see successful logins from the management server, so I am a bit confused as to why CheckPoint is showing it as failing. Is there a log file on the management server that shows the Authentication process &amp; where it is failing?</P><P>Any suggestions on what might be happening?</P><P>&nbsp;</P><P>Thanks</P> Wed, 23 Sep 2020 12:30:11 GMT AshleyM 2020-09-23T12:30:11Z https://community.checkpoint.com/t5/Cloud-Firewall/DataCenter-Object-Authentication-Failing/m-p/97350#M1905 <P>Hi,</P><P>&nbsp;</P><P>I am setting up a connection to an Azure datacenter via a datacenter object on the management server. I am using the Azure AD User Authentication method of connection &amp; have had a service account set up with the permissions required as shown in the guide without MFA applied to it, however when I test the connection Smartconsole shows the connection as failing due to an "Authentication Problem".</P><P>I have checked the AAD sign-in logs for that user and can see successful logins from the management server, so I am a bit confused as to why CheckPoint is showing it as failing. Is there a log file on the management server that shows the Authentication process &amp; where it is failing?</P><P>Any suggestions on what might be happening?</P><P>&nbsp;</P><P>Thanks</P> Wed, 23 Sep 2020 12:30:11 GMT https://community.checkpoint.com/t5/Cloud-Firewall/DataCenter-Object-Authentication-Failing/m-p/97350#M1905 AshleyM 2020-09-23T12:30:11Z https://community.checkpoint.com/t5/Cloud-Firewall/DataCenter-Object-Authentication-Failing/m-p/97352#M1906 <P>Time ? <A class="cp_link sc_ellipsis" style="max-width: 840px;" href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk154952&amp;partition=Advanced&amp;product=CloudGuard" target="_blank">sk154952: Authentication failure when creating an AWS datacenter object even though credentials are valid</A></P> Wed, 23 Sep 2020 12:37:48 GMT https://community.checkpoint.com/t5/Cloud-Firewall/DataCenter-Object-Authentication-Failing/m-p/97352#M1906 G_W_Albrecht 2020-09-23T12:37:48Z https://community.checkpoint.com/t5/Cloud-Firewall/DataCenter-Object-Authentication-Failing/m-p/97355#M1907 <P>Which version are you using?</P><P>And in parallel, check $FWDIR/log/cloud_proxy.elg.</P> Wed, 23 Sep 2020 13:09:03 GMT https://community.checkpoint.com/t5/Cloud-Firewall/DataCenter-Object-Authentication-Failing/m-p/97355#M1907 Gil_Sudai 2020-09-23T13:09:03Z https://community.checkpoint.com/t5/Cloud-Firewall/DataCenter-Object-Authentication-Failing/m-p/97534#M1908 <P>Thank you, after checking the cloud_proxy.elg log file I found the below:&nbsp;</P><P><SPAN>"Failed querying Azure,&nbsp;</SPAN><SPAN>No subscriptions attached to User</SPAN><SPAN>/Service Principal"</SPAN></P><P><SPAN>After checking Azure it turned out the account had been given the required permissions but had not been assigned to any Subscriptions, now it has been assigned the relevant subscriptions the connection is working.</SPAN></P><P>&nbsp;</P><P><SPAN>Thanks!</SPAN></P> Fri, 25 Sep 2020 11:30:04 GMT https://community.checkpoint.com/t5/Cloud-Firewall/DataCenter-Object-Authentication-Failing/m-p/97534#M1908 AshleyM 2020-09-25T11:30:04Z