This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
007_mjn
Contributor
‎2023-05-10 02:12 AM

Unable to add users to users access rule after upgrade of AD server from 2008 to 2016

Hi checkmate Team,

I am unable add users to new users access rule after upgrade of AD server from 2008 to 2016.

what's the solution of this kindly please help me?

I have on premise appliance 6200 and 3600 and both have identity awareness activated. My IT team scheduled a activity  on sunday and upgraded AD server from 2008 to 2016. After this I can't see users when I added them to new access rule. 

0 Kudos
4 Replies
the_rock
Legend
Legend
‎2023-05-10 05:15 AM

Hey @007_mjn 

Some questions...

1) Are you using on prem mgmtr or S1C (smart-1 cloud)?

2) Can you send an actual screenshot of the issue you are facing?

3) Are you able to actually fetch the branches inside the actual LDAP unit?

Cheers,

Andy

0 Kudos
RS_Daniel
Advisor
‎2023-05-10 05:39 AM

Hello,

The problem description doesn't provide a very clear context, a scrennshot of the error would help, do you see "Error retrieving results" on access role when searching users? if so a couple of possible options are sk176849 or sk147332.  

As problem starte after the upgrade, does your account have admin permissions? or did you use sk93938 to create an account with specific permission? i would try with any admin user. 

Regards

the_rock
Legend
Legend
‎2023-05-10 05:43 AM
In response to RS_Daniel

Good advice @RS_Daniel 

0 Kudos
PhoneBoy
Admin
Admin
‎2023-05-10 10:20 AM

Some basic information would be helpful, like:

  • Version/JHF of the gateways
  • The integration method with Active Directory (ADQuery, Identity Collector)

If you are using ADQuery, you should move to Identity Collector ASAP.
Microsoft has significantly changed how WMI works and ADQuery is no longer recommended to use.
See: https://support.checkpoint.com/results/sk/sk108235 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events