Are you a member of CheckMates?
×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Well, third day deep diving into Mobile Access blade on R80.10 and here are the findings so far:
1. Mobile Portal does not work as intended. From Windows 10:
a. no native applications could be launched as SNX does not work using either Active-X or Java (at least on Windows 10 Pro).
b. no custom web applications appear in the portal as well, regardless of where they were defined in.
2. Multiple notification errors during policy installation or failure to install policy:
a. When GW rules are removed from the Mobile tab in SmartDashboard, still seeing:
b. When mobile blade is removed from the gateway and the rule referring to it adjusted by replacing the gateway with "Installation Targets", still seeing this:
3. Mobile blade FTW, displays "Check Point Mobile for Windows" as one of the options for Desktop Clients, while Capsule VPN is only associated with "Mobile Devices":
Endless re-naming of and re-purposing the names for different types of clients is mind boggling.
Any suggestions on how to make SSL VPN accessible, manageable and the portal to work as intended, regardless the version of the OS, browser etc.., preferably notifying users about any incompatibility issues and describing workarounds interactively?
LOL at Lies, Damn Lies, and Statistics in your rule 
Part of the reason CheckMates exists is to give R&D direct feedback on what needs improvement.
Clearly there are a few areas for improvement highlighted in this thread.
Hi Vladimir,
I've been using Mobile Access R80.10, Unified mode on a customer and no worries with it so far.
The warning message about Legacy conflict it's a bug as it was mentioned above, but just for kicks I've setup a Mobile Web Application to add and show in the portal, easy actually.
I used Firefox to test, version 58.0.2
I'm also able to user SNX with no issues, Java version (build 1.8.0_161-b12), *update, didn't had issues on the first time wich installed the SNX in the process, but it's not loading anymore now, maybe because we need the new deployment like it was mentioned above.
Still not running with latest recommended JHF_70
I'm very excited with Unification process and R80.10 Mobile Access Blade as proven successful and actually easier to understand/read, but the way to setup is indeed different from Legacy, Access User Roles vs Users Groups, no more native applications with annoying Address-Range in place of the NetworkObjects and Services, everything is put exactly as a firewall access rule.
Best regards,
Carlos
Hi Sal_Previtera,
I've the same issue of you, that you have just resolved.
Where I am wrong:
Parent Inline Layer 47: VPN_TERVI inline layer - only Mobile Access Blade
AR_ANY_VPN_CLIENT_TEST: any network/any users/any machine/all specific Remote Client
Inline layer rules:
AR_USER_CAMBROSINI: any network/SPECIFIC USER/any machine/only MOBILE ACCESS PORTAL
AR_GG_TEST: any network/SPECIFIC USER/any machine/only MOBILE ACCESS PORTAL
AR_WEBPORTAL_CLIENT: any network/any users/any machine/only MOBILE ACCESS PORTAL
If I loged in with a specif user: AR_GG_TEST
I can see all the WEB APLLICATION, and not only the WorldClock
