This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Sven
Explorer
‎2024-07-22 06:45 AM

Organisation Scanner on 81.20 with client 88.41 without AzureAD

Hi ,

we have a hybrid AD with Azure. When the organisation scanner on EPS server scan the internal AD the some users are assigned on the EPS at Entire Organisation / Other Users/Computers and the client preboot shows the domain AZUREAD.

This is stupid, because it enters the "wrong" user in the preboot of the FDE which means that you have to change the user in the preboot to the correct user.

 

Why there is the problem ?

And how can I disable the AzureAD synchronisation and only use the internal AD synchronisation ?

 

Thx.

Sven

 

0 Kudos
3 Replies
Sven
Explorer
‎2024-07-22 08:07 AM

Hi again,

we were able to narrow down the problem a little. I have found that the deleted users/computers was not correctly synchronised with the AD altough the serviceaccount has full read permissions on AD.

 

Is it posible to clean up the Checkpoint EPS database ?

 

Sven

 

0 Kudos
Itamar_Tubul
Employee
Employee
‎2024-07-22 08:11 AM
In response to Sven

Hi,

We apologize for the inconvenience.

We are aware of an issue with the FDE blade when using EntraID. We will update our documentation and known limitations to reflect this issue.

We are actively working on a solution that will be deployed in the next few weeks.

In the meantime, if you need to remove EntraID from your server, please open a support request, and we will assist you with the process.

Thank you for your understanding and patience.

Best regards,

Itamar

0 Kudos
FloydG
Participant
2 weeks ago
In response to Itamar_Tubul

Hi. Has this issue been fixed in "Enterprise Endpoint Security E88.50 Windows Clients"?

Not sure if this matches our issue:

EPS-56482

Enhancement: After a password change, Microsoft Entra ID users are now prompted to lock and unlock the computer to synchronize the Windows password and the FDE Pre-boot password.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events