Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
kb1
Collaborator

service account locks out multiple times a day on our checkpoint gtwys

So we have mobile access enabled on 2 of our gateways , one is an open server and the other one is a 4000 series appliance and we get lockouts from both of these gateways, the service account is svc_checkpoint and its configured under ldap server properties. The lockouts are a lot and we got about 1300 or so in the past 30 days for the both of these gateways, no idea whats causing them and last time we tried changing passwords for this account it brought down production traffic so im not attempting that again, anything else that can be done to prevent these lockouts?

Attaching pic below of where the service account is configured.

Inkedsmartconsole_LI.jpg

Thanks and Regards.

0 Kudos
6 Replies
PhoneBoy
Admin
Admin

You might have to get the TAC involved here to help debug this.
However, given this is clearly a pre-R80 system, if they find its a bug, you will be asked to upgrade as releases prior to R80.10 are no longer supported.
0 Kudos
kb1
Collaborator

Wait wait, actually both are R80.20 and there is a hotfix available for both dated 20th Feb don't know if that will fix the issue though.
0 Kudos
PhoneBoy
Admin
Admin

Ah yes, this is a Mobile Access policy, which still uses the old SmartDashboard.
You should confirm with TAC if this issue is addressed in the JHF.
0 Kudos
Buitre
Participant

hello, i have the same problem on R81 take 69,

Do you know if is a certified bug already solved ?

thanks

0 Kudos
PhoneBoy
Admin
Admin

No idea, and would recommend consulting with the TAC: https://help.checkpoint.com

0 Kudos
Buitre
Participant

found solution for my issue : it was ntlm protocol sent by firewall to AD.

Solution is here :

https://support.checkpoint.com/results/sk/sk91462

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events