- Products
- Learn
- Local User Groups
- Partners
- More
Check Point Jump-Start Online Training
Now Available on CheckMates for Beginners!
Why do Hackers Love IoT Devices so Much?
Join our TechTalk on Aug 17, at 5PM CET | 11AM EST
Welcome to Maestro Masters!
Talk to Masters, Engage with Masters, Be a Maestro Master!
ZTNA Buyer’s Guide
Zero Trust essentials for your most valuable assets
The SMB Cyber Master
Boost your knowledge on Quantum Spark SMB gateways!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
CheckFlix!
All Videos In One Space
Hi,
We are having a problem now on implementation when using SAML Azure AD authentication. Everything is working - authentication etc. Users can login properly - connectivity is ok.
My problem is that when we use the access role and choose a specific user / group - the access role is not working and traffic goes thru Clean up rule. Access role works when it is set to "Any Authenticated" but this would not be helpful when there are multiple user with different access. Any help is appreciated - is there a special config or is this a limitation. We are running R81 + JHF 56 (latest)
Thanks
Are you sure the application in Azure AD is set up per here?
https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_IdentityAwareness_AdminGuide/Topic...
The groups needed for Azure AD are retrieved via the Graph API (supported in R81 and above).
Had the same issue on R81, login to Azure SAML worked fine but after that , cleanup rule was used instead of the specific access role policy rule. TAC provided a hotfix and this started working after we applied the hotfix to the gateway and installed the policy. Hotfix will be custom and dependent on your HFA level.
i have the same issue on r81.10 take 45 , Is there a public SK on this?
can you share the SR# number ?
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY