This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Roy_Smith
Collaborator
‎2020-11-05 04:16 AM

Question about Identity Awareness

Hi

We have 8 domain controllers in our AD domain and these are all listed in an LDAP Account Unit which is then used as part of Identity Awareness. This works fine and has done for many years. 

However, last week one of the physical domain controllers went down and stayed down for a few days until it could be repaired. Nothing was affected immediately, but after a few days, we noticed that VPN users were not connecting to one of the RA gateways, although they could connect to another gateway that we have. Looking into it, the logs did not show the user names for the users connecting, which it normally does. To resolve it, we removed the DC from the LDAP Account Unit, pushed policy and everything worked again. 

So, my question is - why did it take several days before we saw an issue with the missing DC? Is there some sort of timeout or caching going on here?

Any help to understand this better would be much appreciated. 

Many Thanks
Roy

0 Kudos
1 Reply
PhoneBoy
Admin
Admin
‎2020-11-07 07:10 PM

Probably caching, yes.
You can see some discussion of this here: https://community.checkpoint.com/t5/Policy-Management/Access-Role-and-Machine-name/m-p/54701/highlig...

 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events