This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Network_M
Collaborator
‎2018-09-06 09:14 PM
Jump to solution

Is Access Role required for using Captive Portal?

On R80.10, I want to redirect my specific users to captive portal to authenticate.

I have some difficulties on writing that rule.

I did these things:

1. Enabled identity awareness blade;

2. Enabled captive portal (put tick on CP machines);

3. Created users on right pane, and gave them CheckPoint password.

In the policy, while writing rule, I did:

Source: group of hosts (for example, 5 ip addresses);

Destination: Internet

Service: Any

Action: Accept (display Captive Portal)

Will my rule work? I do not know where to use Access Role.

What is Access Role? Is it required to use? What does it do?

In my rule, where do I have to use it?

Thank you!

1 Solution

Accepted Solutions
_Val_
Admin
Admin
‎2018-09-06 11:30 PM
Jump to solution

Identity Awareness rules require Access Role as a source and not IP addresses. Also, only HTTP and HTTPS will be redirected to captive portal, so use Service tab accordingly.

For more information about Identity awareness, look into Identity Awareness R80.10 Administration Guide 

Access Role object creation and use is in the guide.

View solution in original post

3 Replies
_Val_
Admin
Admin
‎2018-09-06 11:30 PM
Jump to solution

Identity Awareness rules require Access Role as a source and not IP addresses. Also, only HTTP and HTTPS will be redirected to captive portal, so use Service tab accordingly.

For more information about Identity awareness, look into Identity Awareness R80.10 Administration Guide 

Access Role object creation and use is in the guide.

Network_M
Collaborator
‎2018-09-06 11:58 PM
In response to _Val_
Jump to solution

I did as you said, it is working, thank you.

All HTTP and HTTPS are redirected to captive portal (browser based).

Can I modify settings of captive portal like timeout (minutes), asking for login each time when browser is opened newly?

0 Kudos
_Val_
Admin
Admin
‎2018-09-07 12:02 AM
In response to Network_M
Jump to solution

Yes you can, look into the guide I have provided you

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events