Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
nflnetwork29
Advisor
Jump to solution

remote access vpn embedded browser how to clear cache

When using the Check Point VPN client W/ Identify provider (Azure / SAML) - By default, the Windows client uses its embedded browser.

 

I am having a quirky issue where the Edge browser is using cached/saved credentials (save username) to connect.

 

I see nowhere to clear this and enter a different username other than what is cached. 

 

 

Has anyone come across this?

 

 

 

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin

@AndreiR can you confirm with the SK team that SK180395 can now be made public?
The TL;DR of it is to change idp_browser_mode in trac.defaults from embedded to default_browser.
trac.defaults can be found on the client in:

  • 64-bit Windows: %ProgramFiles(x86)%\CheckPoint\Endpoint Connect\trac.defaults
  • macOS: /Library/Application Support/Checkpoint/Endpoint Security/Endpoint Connect/Trac.defaults

The Endpoint service will then need to be restarted as follows:

  • Windows (as admin)
    • net stop TracSrvWrapper
    • net start TracSrvWrapper
  • macOS:
    • sudo launchctl stop com.checkpoint.epc.service
    • sudo launchctl start com.checkpoint.epc.service

View solution in original post

(1)
11 Replies
the_rock
Legend
Legend

Maybe this?

Screenshot_1.png

0 Kudos
nflnetwork29
Advisor

no dice. 

 

is there any way to force the browser to open in "incognito" mode?

0 Kudos
PhoneBoy
Admin
Admin

In E87.30 and above, we support using the default browser for the client OS for SAML authentication.
See: https://support.checkpoint.com/results/sk/sk180395 

0 Kudos
nflnetwork29
Advisor

yeah, i saw that however it gives me no option to enter a username and password.  

 

it signs me in automatically with my email id .

 

(I am testing another vpn setup for a different environment) so i have a conflict. If i could clear the cache somehow or force it to prompt for credentials i think it would work. 

 

 

2023-05-11_14-56-23.jpg

0 Kudos
the_rock
Legend
Legend

Are you saying that even in incognite mode makes no difference?

Andy

0 Kudos
PhoneBoy
Admin
Admin

If you're actually using this option, it would show not in the "embedded browser" but in the default browser configured in the OS.
There, you should be able to clear the necessary cookies.

Not sure how to clear cookies in the Embedded browser.

0 Kudos
AndreiR
Employee
Employee

Hi,

There is no option in VPN client to clear cookies in the Embedded Browser. But taking into account that Embedded Browser is based on Internet Explorer, you may try run IE and clear its cookies.

For the future, it is better to default system browser.

0 Kudos
nflnetwork29
Advisor

this link is not working for me

(1)
PhoneBoy
Admin
Admin

@AndreiR can you confirm with the SK team that SK180395 can now be made public?
The TL;DR of it is to change idp_browser_mode in trac.defaults from embedded to default_browser.
trac.defaults can be found on the client in:

  • 64-bit Windows: %ProgramFiles(x86)%\CheckPoint\Endpoint Connect\trac.defaults
  • macOS: /Library/Application Support/Checkpoint/Endpoint Security/Endpoint Connect/Trac.defaults

The Endpoint service will then need to be restarted as follows:

  • Windows (as admin)
    • net stop TracSrvWrapper
    • net start TracSrvWrapper
  • macOS:
    • sudo launchctl stop com.checkpoint.epc.service
    • sudo launchctl start com.checkpoint.epc.service
(1)
AndreiR
Employee
Employee

Hi @PhoneBoy ,

Thanks for this hint. I've submitted update to sk180395. It will be published soon.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events