This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
abihsot__
Advisor
‎2020-05-20 03:34 AM

Defining access per user

Hi there,

In mobile access portal policy you can add singe user and not necessary use LDAP group and it works just fine.

image.png

 

I tried to achieve the same for remote access for VPN users and I couldn't find a way to do this. I could add only LDAP group, but not single user. Is there a way to do this?

 

0 Kudos
4 Replies
Wolfgang
Authority
Authority
‎2020-05-20 03:54 AM

If you want to allow only a single user you have to use access-roles as source in your policy. 

Create a role for every user you need and add only the user in the access-role. These users can't be internal users, they can be added only if they defined in a directory referenced by an account unit.

Wolfgang

0 Kudos
abihsot__
Advisor
‎2020-05-20 04:04 AM
In response to Wolfgang

This means I need to enable Identity Awareness blade on the gateway to use access roles. The gateway having Mobile Access do not have Identity Awareness enabled. Thanks for suggestion, I'll give it a try.

0 Kudos
Norbert_Bohusch
Advisor
‎2020-05-20 05:50 AM
In response to abihsot__

Legacy User Access should not be used anymore and Identity Awareness is anyway the recommended way for creating Remote Access rules.
As soon as you want to move to a unified policy, the Legacy User Access objects aren't working/supported and you will not be able to install policy anyway.
0 Kudos
abihsot__
Advisor
‎2020-05-27 07:55 AM
In response to Norbert_Bohusch

Noted, thanks!

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    Virtual

    Tue 23 Apr 2024 @ 11:00 AM (EDT)

    East US: What's New in R82
    Virtual

    Thu 25 Apr 2024 @ 11:00 AM (SGT)

    APAC: CPX 2024 Recap

    Thu 25 Apr 2024 @ 10:00 AM (CEST)

    The Anatomy of a Cloud Hack by NotSoSecure - EMEA Session

    Thu 25 Apr 2024 @ 06:00 PM (IDT)

    The Anatomy of a Cloud Hack by NotSoSecure - America Session
    Virtual

    Tue 30 Apr 2024 @ 03:00 PM (CDT)

    EMEA: CPX 2024 Recap
    Virtual

    Thu 02 May 2024 @ 11:00 AM (SGT)

    APAC: What's new in R82
    Virtual

    Tue 23 Apr 2024 @ 11:00 AM (EDT)

    East US: What's New in R82
    Virtual

    Thu 25 Apr 2024 @ 11:00 AM (SGT)

    APAC: CPX 2024 Recap
    Virtual

    Tue 30 Apr 2024 @ 03:00 PM (CDT)

    EMEA: CPX 2024 Recap
    Virtual

    Thu 02 May 2024 @ 11:00 AM (SGT)

    APAC: What's new in R82
    Virtual

    Thu 02 May 2024 @ 04:00 PM (CEST)

    CheckMates Live DACH - Keine Kompromisse - Sicheres SD-WAN
    Virtual

    Thu 02 May 2024 @ 05:00 PM (CEST)

    SASE Masters: Deploying Harmony SASE for a 6,000-Strong Workforce in a Single Weekend
    CheckMates Events