This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
JP_Rex
Collaborator
Collaborator
‎2024-07-22 04:26 AM
Jump to solution

R81.20 SmartView Web Application no SSO?

Hello,

if you open

https://<Management Server IP address>/smartconsole

you can use the configured IdP for the Admin access.

for 

https://<IP Address of Management Server>/smartview/

 

it you can not.

 

Any thoughts on why?

 

Regards

 

Peter

 

2 Solutions

Accepted Solutions
PhoneBoy
Admin
Admin
‎2024-07-22 06:09 AM
Jump to solution

That is expected behavior last I checked.
Also, I believe the Web SmartConsole effectively includes SmartView functionality.

View solution in original post

0 Kudos
Tomer_Noy
Employee
Employee
‎2024-07-22 11:11 PM
In response to PhoneBoy
Jump to solution

We've embedded the SmartView functionality into the Web SmartConsole, and we encourage customers to use it. It contains a lot of additional functionality on top of the /smartview web application, and this is where we direct a lot of our investment.

We do not currently plan to add SSO login to the /smartview app.

View solution in original post

0 Kudos
11 Replies
PhoneBoy
Admin
Admin
‎2024-07-22 06:09 AM
Jump to solution

That is expected behavior last I checked.
Also, I believe the Web SmartConsole effectively includes SmartView functionality.

0 Kudos
JP_Rex
Collaborator
Collaborator
‎2024-07-22 06:39 AM
In response to PhoneBoy
Jump to solution

Have you heard any rumors if it will be implemented, Or will the SmartView Web Application be ditched for web SmartConsole?

Regards

 

Peter

0 Kudos
JP_Rex
Collaborator
Collaborator
‎2024-07-22 07:00 AM
In response to the_rock
Jump to solution

I will check myself in 2 weeks. Someone will be over from Israel to get our EA running.

Regards

Peter

0 Kudos
the_rock
Legend
Legend
‎2024-07-22 07:04 AM
In response to JP_Rex
Jump to solution

Sounds good, they would know for sure 🙂

Andy

0 Kudos
PhoneBoy
Admin
Admin
‎2024-07-22 08:47 AM
In response to JP_Rex
Jump to solution

@Tomer_Noy any plan to implement SAML auth for SmartView?

0 Kudos
Tomer_Noy
Employee
Employee
‎2024-07-22 11:11 PM
In response to PhoneBoy
Jump to solution

We've embedded the SmartView functionality into the Web SmartConsole, and we encourage customers to use it. It contains a lot of additional functionality on top of the /smartview web application, and this is where we direct a lot of our investment.

We do not currently plan to add SSO login to the /smartview app.

0 Kudos
Tobi
Participant
Participant
‎2024-09-04 06:26 AM
In response to Tomer_Noy
Jump to solution

Are there any plans to restrict the appereance  of specific menus in the web smartconsole? We have users that only need access to the firewall logs for which smartview is perfect. If we want use SAML they need to use the web smartconsole, but even if they have permissions only for the log view, they can see all gateways, policies and objects. It would be great if SSO login would be implemented to the smartview app or if there are a possibility to restrict the web smartconsole appereance that they only see the Logs & Monitor menu. 

Is this something that is on the roadmap?

PhoneBoy
Admin
Admin
‎2024-09-04 07:06 AM
In response to Tobi
Jump to solution

What's available via Web SmartConsole is a function of the permissions profile you assign to the user.
I created a "Logs only" user with an appropriate permission profile and this is the extent of what I can see in the policy (at least in R82 EA):

image.png

Note that you cannot disable access to the Objects, but they are Read Only and, arguably, necessary to review the logs.

0 Kudos
Tobi
Participant
Participant
‎2024-09-04 07:32 AM
In response to PhoneBoy
Jump to solution

If I click on the plus I can also see all the available policies which is not necessary in my opinion. In addition if you go to Gateways & Servers I can see all gateways and have read access to the information which I also don't need for a logs only user. So the best thing would be to grey out Gateway & Servers and Security Policies. In my opinion a logs only user just need access to the Logs & Event section. We use R81.20.

0 Kudos
PhoneBoy
Admin
Admin
‎2024-09-04 10:38 AM
In response to Tobi
Jump to solution

The idea of a pre-defined "logs only" admin user would likely require some additional efforts beyond how it displays in Web SmartConsole.
This is very likely an RFE.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top