https://community.checkpoint.com/t5/Endpoint/Endpoint-Security-VPN-IP-Pools/m-p/70580#M1859 <P>Using Identity Awareness and Access Roles in rule base.</P> Mon, 16 Dec 2019 15:47:47 GMT G_W_Albrecht 2019-12-16T15:47:47Z https://community.checkpoint.com/t5/Endpoint/Endpoint-Security-VPN-IP-Pools/m-p/70573#M1858 <P>Hello,</P><P>&nbsp;</P><P>We have Checkpoint VPN setup on R77.30. One of the requirements is that we have a separate "DHCP" assignment for network engineers to allow for more significant restrictions on everyone else. I can't think of a way to do this with IP Pools. Has anyone had this requirement in the past? How did you accomplish this?&nbsp;</P> Mon, 16 Dec 2019 14:52:49 GMT https://community.checkpoint.com/t5/Endpoint/Endpoint-Security-VPN-IP-Pools/m-p/70573#M1858 Terry 2019-12-16T14:52:49Z https://community.checkpoint.com/t5/Endpoint/Endpoint-Security-VPN-IP-Pools/m-p/70580#M1859 <P>Using Identity Awareness and Access Roles in rule base.</P> Mon, 16 Dec 2019 15:47:47 GMT https://community.checkpoint.com/t5/Endpoint/Endpoint-Security-VPN-IP-Pools/m-p/70580#M1859 G_W_Albrecht 2019-12-16T15:47:47Z https://community.checkpoint.com/t5/Endpoint/Endpoint-Security-VPN-IP-Pools/m-p/72081#M1897 <P>We can use the user.dat file to assign a different range to different AD user groups. I thought I'd share this method as well.</P> Fri, 10 Jan 2020 20:32:48 GMT https://community.checkpoint.com/t5/Endpoint/Endpoint-Security-VPN-IP-Pools/m-p/72081#M1897 Terry 2020-01-10T20:32:48Z