This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Mark_Edwards
Contributor
‎2020-08-20 03:42 AM

scv logging

Hi,

Recently implemented SCV to check if VPN user's computers are domain joined.

This is working and non-compliant users get the warning message.

At the moment it is set to Allow and log. 

The SCV Registry Monitor policy definition is also configured to log (send_log =alert).

The issue is I can't find where this is logged on SmartConsole (R80.30)

I know that the non-compliance is only logged once but I should still be able to see it.

It could be that I'm just filtering/querying the wrong thing.

In Endpoint compliance I don't see anything either. 

Any suggestions?

Thanks

0 Kudos
4 Replies
PhoneBoy
Admin
Admin
‎2020-08-20 06:42 AM

SCV is a little different than Endpoint Compliance though it serves the same function.
I would expect the logs to appear as part of VPN/Remote Access and not necessarily Endpoint.

0 Kudos
Xavier_FIQUET
Participant
‎2020-09-10 05:45 AM

add the same issues there . if user has already authenticated months ago, you must look for the first time event since it will never be logged again ... we are thinking on asking for a RFE to get each time the scv logs whatever the results.

0 Kudos
Yashwanth_Katu1
Explorer
‎2021-01-11 08:03 AM

We have configured SCV recently and we are facing the same issue. our smart console is on R80.30. FYI: we are seeing the logs on the "Endpoint Compliance blade"

Also, we are seeing user as default in the MLM for non-compliant users. Any way we can resolve this issue?

any suggestions? 

0 Kudos
archie
Participant
‎2022-11-11 04:31 AM
In response to Yashwanth_Katu1

Same behavior for me. Any suggestions?

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events
    li.common.scroll-to.top