This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Keith_Harvey
Explorer
‎2018-08-21 08:17 AM

Identity Awareness sometimes includes @domain

Having an odd Identity Awareness issue that I was hoping someone else may have ran into.  The users are being identified correctly, but sometimes they come through as jdoe, and sometimes jdoe@domain.com.  The issue though, is when the "@domain.com" is included, they are not allowed on the rules they are allowed on.

i.e. We have all webmail blocked except for a small user group that is allowed.  jdoe is allowed, jdoe@domain.com is not.  Sometimes, ethernet adapter will pass one, and wireless will pass the other... (without reauthing anything)

We only use AD Query for Identity Awareness, running r77.30.

Any help is much appreciated!

2 Replies
PhoneBoy
Admin
Admin
‎2018-08-21 04:46 PM

Have you opened a TAC case by chance?

0 Kudos
Keith_Harvey
Explorer
‎2018-08-21 04:52 PM
In response to PhoneBoy

I have not yet, it's a finicky issue that I can't always replicate, so thought it would be a good one to ask here!  But that will be my next step..

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events
    Top