This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
minhhaivietnam
Collaborator
‎2019-12-22 11:46 PM

Application and URL filtering not recognize different users on same machine

Dear All,

I have firewall internet R80.10 running Application &URL filtering blade.
I created internet access policy for users in company (PC running windown10)
Example:
Peter-------Can go internet with URL1,2,3,4 (I call URL_SET01)

John----------Can go internet with URL5,6,7,8 (I call URL_SET02)

Peter,John... are accounts I get from AD server via indentity awareness blade.
Everythink is working ok.

The problem is that: when Peter uses his AD account to login PC_of_John, then Peter logout,
then John logon his PC again=> Then John can not access website URL_SET02.
I search in smartlog, column "Source User Name" shows all users who have loged in PC of John.

Like this:

user1.png

I try to restart PC then sometime the thing works ok, sometime not.
Please help what we can do on firewall to solve this.


THANKS!!!

 

 

 

0 Kudos
2 Replies
Maarten_Sjouw
Champion
Champion
‎2019-12-23 01:30 AM

On your gateway go to the settings of Identity Awareness and click on the settings button for Active Directory Query.
You will get a window with the user/machine association time, which defaults to 720 minutes.
Change this time, when you have this user change per PC happening a lot, to a lower time.
Also the setting 'Assume 1 user per computer' can be unticked to make sure this is not bugging you.
Regards, Maarten
0 Kudos
Chris_Atkinson
Employee Employee
Employee
‎2019-12-23 01:55 AM
In response to Maarten_Sjouw

If you need this to be more precise the prefered solution is the Identity Agent installed on the client PC.

CCSM R77/R80/ELITE
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    Virtual

    Thu 25 Apr 2024 @ 11:00 AM (SGT)

    APAC: CPX 2024 Recap

    Thu 25 Apr 2024 @ 10:00 AM (CEST)

    The Anatomy of a Cloud Hack by NotSoSecure - EMEA Session

    Thu 25 Apr 2024 @ 06:00 PM (IDT)

    The Anatomy of a Cloud Hack by NotSoSecure - America Session
    Virtual

    Tue 30 Apr 2024 @ 03:00 PM (CDT)

    EMEA: CPX 2024 Recap
    Virtual

    Wed 01 May 2024 @ 02:00 PM (EDT)

    South US: HTTPS Inspection Best Practices
    Virtual

    Thu 02 May 2024 @ 11:00 AM (SGT)

    APAC: What's new in R82
    Virtual

    Thu 25 Apr 2024 @ 11:00 AM (SGT)

    APAC: CPX 2024 Recap
    Virtual

    Tue 30 Apr 2024 @ 03:00 PM (CDT)

    EMEA: CPX 2024 Recap
    Virtual

    Wed 01 May 2024 @ 02:00 PM (EDT)

    South US: HTTPS Inspection Best Practices
    Virtual

    Thu 02 May 2024 @ 11:00 AM (SGT)

    APAC: What's new in R82
    Virtual

    Thu 02 May 2024 @ 10:00 AM (CEST)

    CheckMates Live BeLux: How Can Check Point AI Copilot Assist You?
    Virtual

    Thu 02 May 2024 @ 04:00 PM (CEST)

    CheckMates Live DACH - Keine Kompromisse - Sicheres SD-WAN
    CheckMates Events