This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Ivo_Hrbacek
Contributor
Contributor
‎2018-02-09 02:45 AM
Jump to solution

Permission profile just for one inline layer

Hi,

playing with profiles and have a question, I have few people who should have read only just to ONE inline layer. I can create profile, see below, and I am using this profile just in this layer. Anyway my user assigned to this profile can see other policies in read only because this way just limit write access. Is there a way how to change this behavior? and allow users to have read only just to one layer?

thx!

layer settings:

profile:

else policy settings:

1 Solution

Accepted Solutions
Tomer_Sole
Mentor
Mentor
‎2018-02-11 12:08 AM
Jump to solution

Hi,

With Permissions Per Layer, you can either have:

- Show all policies and edit specific layers

- Show and edit all policies and layers

- Not see any security policy

You cannot limit users from seeing just some of the layers with R80.10 unfortunately.

One workaround that I can offer would be a self service portal which uses the API commands and limits specific users through that portal, but it won't be as part of SmartConsole.

Hope this helps.

View solution in original post

9 Replies
PhoneBoy
Admin
Admin
‎2018-02-10 03:04 PM
Jump to solution

Just to clarify your question: you only want to allow a specific user to read a specific layer, and not other layers that might be in use, correct?

As far as I know (and https://community.checkpoint.com/people/tomera5b2e7f3-09aa-32f8-96c2-f0f5bfa2988b‌ should be able to confirm), this is not possible at the moment.

0 Kudos
Tomer_Sole
Mentor
Mentor
‎2018-02-11 12:08 AM
Jump to solution

Hi,

With Permissions Per Layer, you can either have:

- Show all policies and edit specific layers

- Show and edit all policies and layers

- Not see any security policy

You cannot limit users from seeing just some of the layers with R80.10 unfortunately.

One workaround that I can offer would be a self service portal which uses the API commands and limits specific users through that portal, but it won't be as part of SmartConsole.

Hope this helps.

Ivo_Hrbacek
Contributor
Contributor
‎2018-06-07 06:13 AM
In response to Tomer_Sole
Jump to solution

Hello Tomer,

back to this question.. do you have some self service portal code which can be shared and used as a template? I do not want to start from scratch you know

thx

ivo

PhoneBoy
Admin
Admin
‎2018-06-07 10:50 AM
In response to Ivo_Hrbacek
Jump to solution

https://community.checkpoint.com/docs/DOC-2261 

Ivo_Hrbacek
Contributor
Contributor
‎2018-06-12 12:07 AM
In response to PhoneBoy
Jump to solution

thx

G_W_Albrecht
MVP Silver
MVP Silver
‎2018-09-19 07:18 AM
In response to Tomer_Sole
Jump to solution

Is there any chance that this will be possible in future versions ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
PhoneBoy
Admin
Admin
‎2018-09-21 10:23 AM
In response to G_W_Albrecht
Jump to solution

Possibly, but can't commit Smiley Happy

0 Kudos
Jonas_Reiter
Employee
Employee
‎2024-08-28 04:49 AM
In response to PhoneBoy
Jump to solution

Is there anything new about this in R82?

0 Kudos
PhoneBoy
Admin
Admin
‎2024-08-28 08:17 AM
In response to Jonas_Reiter
Jump to solution

As near as I can tell, this is still not possible in R82.
If you have this as a requirement, please bring it through your local Check Point office with an RFE.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events