topic Identity Awareness/ Terminal Server Agent Question in General Topics https://community.checkpoint.com/t5/General-Topics/Identity-Awareness-Terminal-Server-Agent-Question/m-p/20603#M3804 <HTML><HEAD></HEAD><BODY><P>Does anybody have a solution for sharing identities learned from a terminal services agent across gateways in different domains?&nbsp;&nbsp;&nbsp;&nbsp; The Check Point Identity Agent can only send the identities to&nbsp;a single gateway.&nbsp;&nbsp; And&nbsp;you can not share identities&nbsp;across gateways that are in different domains, even when they are managed by the same Management Domain.</P><P></P><P>We use Identity Collector servers&nbsp;for&nbsp;capturing&nbsp;the Active Directory login event, and it&nbsp;works great for sharing identities across gateways in different domains..&nbsp;&nbsp;&nbsp;I don't understand why Check Point wouldn't make it so that the Terminal Server Agent had the ability to send its learned identities to their own identity Collector server, instead of only to a single&nbsp;gateway.&nbsp; </P></BODY></HTML> Mon, 20 Aug 2018 18:54:26 GMT Scott_Bily 2018-08-20T18:54:26Z Identity Awareness/ Terminal Server Agent Question https://community.checkpoint.com/t5/General-Topics/Identity-Awareness-Terminal-Server-Agent-Question/m-p/20603#M3804 <HTML><HEAD></HEAD><BODY><P>Does anybody have a solution for sharing identities learned from a terminal services agent across gateways in different domains?&nbsp;&nbsp;&nbsp;&nbsp; The Check Point Identity Agent can only send the identities to&nbsp;a single gateway.&nbsp;&nbsp; And&nbsp;you can not share identities&nbsp;across gateways that are in different domains, even when they are managed by the same Management Domain.</P><P></P><P>We use Identity Collector servers&nbsp;for&nbsp;capturing&nbsp;the Active Directory login event, and it&nbsp;works great for sharing identities across gateways in different domains..&nbsp;&nbsp;&nbsp;I don't understand why Check Point wouldn't make it so that the Terminal Server Agent had the ability to send its learned identities to their own identity Collector server, instead of only to a single&nbsp;gateway.&nbsp; </P></BODY></HTML> Mon, 20 Aug 2018 18:54:26 GMT https://community.checkpoint.com/t5/General-Topics/Identity-Awareness-Terminal-Server-Agent-Question/m-p/20603#M3804 Scott_Bily 2018-08-20T18:54:26Z