- Products
- Learn
- Local User Groups
- Partners
- More
Welcome to Maestro Masters!
Talk to Masters, Engage with Masters, Be a Maestro Master!
Join our TechTalk: Malware 2021 to Present Day
Building a Preventative Cyber Program
Be a CloudMate!
Check out our cloud security exclusive space!
Check Point's Cyber Park is Now Open
Let the Games Begin!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
CheckFlix!
All Videos In One Space
Hi,
as the title says, we currently face the problem that login to SC with AD-authentication is not possible, if the account is member of the group "Protected Users Security Group":
Customer's admins are now in this group, which makes it impossible to manage the FW. Before implementing a workaround with a second account, I want to check if anyone has faced this before.
Is this known behavior and is there any workaround?
THX in advance!
SC = SmartConsole?
What version/JHF version?
yes, SmartConsole.
Server is 80.40 T125
SC was tested with different versions, including newest 80.40 build 425.
This is the configuration of the affected admins:
Suggest debugging fwm to see why it's failing: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...
You might need a TAC case to get to the bottom of it, though.
As you are using Radius for authentication the question is how is the Radius server authenticating against AD.
Does this comply with protected users group? E.g. LDAP(S) is not!
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY