Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
Participant

active directory users are not logged or honored in policy - r80.10

i've setup a domain, i've enabled identity awerness

i've created an access rule, which based on a group that's containing the users

i've created a policy saying they can go to the internet, but when i try to access the web, the gaia is ignoring the users, and simply blocks the communication in a standard deny policy with no reference to source user, just ip (ip is not permitted to access, only ad users)

0 Kudos
4 Replies
Admin
Admin

Might want to start with some basic troubleshooting as described here: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...
0 Kudos
Highlighted
Participant

thank you. do i need the identity collector to make it work? i think i've seen systems work without it
0 Kudos
Highlighted
Admin
Admin

Is it strictly required? No.

Is it recommended in larger environments (more than a few thousand users)? Yes.

0 Kudos
Highlighted
Participant

sorry. my mistake. i was testing directly on the dc. when i do it on a workstation. it's working fine
0 Kudos