Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Ivo_Marques
Contributor

Unified Policy / Access Roles / IPASSIGNMENT.CONF

Hi mates,

I’m starting with R80.10 and Unified Policy and, for remote access I need to authenticate my users on Active Directory and assign the IP using ipassignment.conf (like I did it on R77.30). On R77.30 I was using LDAP Groups on the Rulebase and in the ipassignment.conf. On R80.10 I have to use “Access Roles” on the rulebase because of the Unified Policy how can I use ipassignment.conf in this scenario.

I tried to put Access Role name on the ipassignment and didn’t work, I also create an LDAP Group and add it to the Access Role and the authentication worked fine but the LDAP Group on the ipassignment didn’t.

Any ideas?

 

Regards,

Ivo

3 Replies
Ivo_Marques
Contributor

So, one answer is:

  • Rulebase - Access Role - Drill Down the AD and search for your group;
  • IPASSIGNMENT.CONF - Create a LDAP GROUP with the same group and use the name on the ipassignment.

Yes, I had to refer twice the same group.

Maybe I'm going to quit ipassignment and start using RADIUS instead.

0 Kudos
Gaurav_Pandya
Advisor

Hi Ivo,

This option I have used for Remote users authentication with AD. 

As you are going to use RADIUS, how you will map the IP address.

G_W_Albrecht
Legend
Legend

https://support.checkpoint.com/results/sk/sk33422

 

CCSE CCTE CCSM SMB Specialist
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events