- Products
- Learn
- Local User Groups
- Partners
-
More
Join Us for CPX 360
23-24 February 2021
Important certificate update to CloudGuard Controller, CME,
and Azure HA Security Gateways
How to Remediate Endpoint & VPN
Issues (in versions E81.10 or earlier)
IDC Spotlight -
Uplevel The SOC
Important! R80 and R80.10
End Of Support around the corner (May 2021)
We have currently workstations in office. For remote work we use Laptop as a tool to do VPN and RDP to workstations. We want Laptops to be on domain rather than using to it to do RDP.
now to have this feature working how should be the rules configured? currently to access servers rules are configured IP based. Now when Laptops will move to domain everytime user will do VPN it will have a new officemode IP. We dont have identity awareness blade enabled.
I also have doubt that do we need additional server other than management server for Smart Endpoint?
Please help me
SmartEndpoint isn't required here at all, but enabling Identity Awareness will definitely be a good idea.
You could actually create two different Access Roles here:
Make sure Remote Access is a valid identity source in the gateway/cluster object:
Note the reason I am suggesting an Access Role for the networks versus just using the network objects is because you generally can't mix regular network objects and access roles in the source/destination field of a rule.
Believe this limitation is removed in R80.40.
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY