https://community.checkpoint.com/t5/SASE-and-Remote-Access/Compliance-check-forcing-https/m-p/143528#M7097 <P>First off, I apologize in advance as this is my first post here and my knowledge of Checkpoint leaves a lot to be desired. I've only been using and administering it for a couple of months.</P><P>We have a situation where our developers do a lot of local testing, so they're constantly accessing localhost while VPNed in using Checkpoint, which seems to be forcing them to use https rather than http. This is a bit of a hassle for them and we'd like to see if we can solve this on the Checkpoint side rather than having them set up https for all of their local testing. They can currently get around this by using incognito mode, but this also isn't ideal.</P><P>We tried having them modify their HSTS settings in Chrome (their browser of choice) and it'll work until they reconnect to the VPN and run through the compliance check.</P><P>I did poke around in our endpoint compliance policy but didn't see anything obvious that would cause the compliance check to revert that change and force https.</P><P>Long story short, we want our developers, when connected to Checkpoint VPN, to be able to access http on localhost without https redirection. Is this possible? If so, what do I need to do?</P><P>Thanks in advance and sorry again if I posted this in the wrong area, didn't include any necessary or useful information, etc.&nbsp;</P> Fri, 11 Mar 2022 16:13:20 GMT MaxPower 2022-03-11T16:13:20Z https://community.checkpoint.com/t5/SASE-and-Remote-Access/Compliance-check-forcing-https/m-p/143528#M7097 <P>First off, I apologize in advance as this is my first post here and my knowledge of Checkpoint leaves a lot to be desired. I've only been using and administering it for a couple of months.</P><P>We have a situation where our developers do a lot of local testing, so they're constantly accessing localhost while VPNed in using Checkpoint, which seems to be forcing them to use https rather than http. This is a bit of a hassle for them and we'd like to see if we can solve this on the Checkpoint side rather than having them set up https for all of their local testing. They can currently get around this by using incognito mode, but this also isn't ideal.</P><P>We tried having them modify their HSTS settings in Chrome (their browser of choice) and it'll work until they reconnect to the VPN and run through the compliance check.</P><P>I did poke around in our endpoint compliance policy but didn't see anything obvious that would cause the compliance check to revert that change and force https.</P><P>Long story short, we want our developers, when connected to Checkpoint VPN, to be able to access http on localhost without https redirection. Is this possible? If so, what do I need to do?</P><P>Thanks in advance and sorry again if I posted this in the wrong area, didn't include any necessary or useful information, etc.&nbsp;</P> Fri, 11 Mar 2022 16:13:20 GMT https://community.checkpoint.com/t5/SASE-and-Remote-Access/Compliance-check-forcing-https/m-p/143528#M7097 MaxPower 2022-03-11T16:13:20Z https://community.checkpoint.com/t5/SASE-and-Remote-Access/Compliance-check-forcing-https/m-p/143567#M7098 <P>For clarity you've implemented something that disables the following setting in the browser (chrome) or similar and you see it toggled back on again?</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Browser.png" style="width: 699px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/15678i964B4C3807EF3764/image-size/large?v=v2&amp;px=999" role="button" title="Browser.png" alt="Browser.png" /></span></P> <DIV id="tinyMceEditor_11a1df609a10f9Chris_Atkinson_0" class="mceNonEditable lia-copypaste-placeholder">&nbsp;</DIV> <P>&nbsp;</P> Sat, 12 Mar 2022 02:24:33 GMT https://community.checkpoint.com/t5/SASE-and-Remote-Access/Compliance-check-forcing-https/m-p/143567#M7098 Chris_Atkinson 2022-03-12T02:24:33Z https://community.checkpoint.com/t5/SASE-and-Remote-Access/Compliance-check-forcing-https/m-p/202069#M7099 <P>Any solutions for this we have same problem?</P> Wed, 03 Jan 2024 13:47:14 GMT https://community.checkpoint.com/t5/SASE-and-Remote-Access/Compliance-check-forcing-https/m-p/202069#M7099 mihudak 2024-01-03T13:47:14Z https://community.checkpoint.com/t5/SASE-and-Remote-Access/Compliance-check-forcing-https/m-p/202147#M7101 <P>If your certain it isn't related to some group policy type setting I would consult with TAC regarding the behavior / solution.</P> <P>&nbsp;</P> Thu, 04 Jan 2024 04:19:53 GMT https://community.checkpoint.com/t5/SASE-and-Remote-Access/Compliance-check-forcing-https/m-p/202147#M7101 Chris_Atkinson 2024-01-04T04:19:53Z