This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Bernardes
Advisor
Advisor
‎2023-03-13 06:13 AM
Jump to solution

Harmony Connect error "your organizational email domain is not mapped"

Hello Mates!

 

My customer is trying to connect a new user in Harmony Connect App and the following error occurs:

hc.jpg

 

I'm not sure, but I think it's a new domain, the old one is @euemdia.com.br there's a slight difference between it.

How can I map this new domain in the account?

 

Thank you!

0 Kudos
1 Solution

Accepted Solutions
Tamir_Mitnitski
Employee
Employee
‎2023-03-31 10:01 AM
Jump to solution

Hi everyone,

I'm Tamir from the Harmony Connect team.

To give some background to this issue :

Harmony Connect supports 2 types of users.

 

1. Local-users : Which are users who are stored at Check Point. In simple terms it's Check Point's IDP. This is the default setting.

2. IDP users : Which is users who are connected via the Infinity Portal admin's chosen IDP. This requires the Infinity portal admin to add an IDP configuration in Harmony Connect (Under settings -> Identity provider).

 

For both types of users the following most of the time resolves the issue :

Going into the browser settings -> Downloads settings (chrome://settings/downloads (if you are using Chrome)) -> And disabling "Ask where to save each file before downloading" 

chrome.png

Note : Please make sure to not re-name the file downloaded from the Harmony Connect Portal/Website as it includes information which is needed to activate the Harmony Connect agent.

Notes on local-users :

If you are getting prompted the prompt that asks for an email address, something isn't right and you should contact Check Point if the above solution didn't help.

 

Notes on IDP users : 

Make sure the IDP is fully configured with the domain you are trying to input.

If you are still getting this error, please don't hesitate to reach out to Check Point.

 

Let me know if my comment helped!

View solution in original post

(1)
12 Replies
the_rock
Legend
Legend
‎2023-03-13 06:38 AM
Jump to solution

I think my colleague had that exact issue with a customer, let me ask him and will get back to you.

Cheers mate 😇

Bernardes
Advisor
Advisor
‎2023-03-13 12:43 PM
In response to the_rock
Jump to solution

Hello @the_rock !

I will be grateful mate!

0 Kudos
the_rock
Legend
Legend
‎2023-03-13 12:48 PM
In response to Bernardes
Jump to solution

Sorry, meant to reply earlier, but forgot, my bad. My collegue said to double check in global properties that domain is indeed there, otherwise, you may need to confirm with support.

0 Kudos
Bernardes
Advisor
Advisor
‎2023-03-13 02:28 PM
In response to the_rock
Jump to solution

Hello @the_rock I can't find domain configurations in global settings on Harmony Connect portal. Where do I find this section about domains?

0 Kudos
Bernardes
Advisor
Advisor
‎2023-03-13 03:06 PM
In response to the_rock
Jump to solution

I think that I found where this configuration must be put in, but I'm not sure how.

 

harm-dns.png

When I tried to validate the domain @emdia.com.br it returns an error, but I don't know how to insert this new domain there.

0 Kudos
the_rock
Legend
Legend
‎2023-03-13 04:12 PM
In response to Bernardes
Jump to solution

Wait...what is your identity provider? Also, is any domain showing as connected or no?

Andy

0 Kudos
Bernardes
Advisor
Advisor
‎2023-03-13 04:33 PM
In response to the_rock
Jump to solution

My Identity provider is the MS Azure AD. I already have those 2 domains that work fine so far.

0 Kudos
the_rock
Legend
Legend
‎2023-03-13 05:15 PM
In response to Bernardes
Jump to solution

Not 100% positive, sorry, I dealt with harmony connect only once before. Did you have to do anything on Azure side for the other 2 domains?

0 Kudos
Bernardes
Advisor
Advisor
‎2023-03-14 05:16 AM
In response to the_rock
Jump to solution

Sorry for the late answer @the_rock .

I got this environment just a few days ago, I'm not sure how the things were made previously, but I think that on Azure side was not needed any changes in the first time.

0 Kudos
the_rock
Legend
Legend
‎2023-03-14 06:02 AM
In response to Bernardes
Jump to solution

You can verify with curl_cli -k command on the gateway, just do it for all 3 domains and see what happens, if results are the same or not.

Andy

0 Kudos
victoryure
Explorer
‎2023-03-31 09:30 AM
Jump to solution

Hello Bernardes,

Try to download the agent by using another browser. Sometimes the google chrome and other variants mess the agent profile.

Cheers,

Victor

(1)
Tamir_Mitnitski
Employee
Employee
‎2023-03-31 10:01 AM
Jump to solution

Hi everyone,

I'm Tamir from the Harmony Connect team.

To give some background to this issue :

Harmony Connect supports 2 types of users.

 

1. Local-users : Which are users who are stored at Check Point. In simple terms it's Check Point's IDP. This is the default setting.

2. IDP users : Which is users who are connected via the Infinity Portal admin's chosen IDP. This requires the Infinity portal admin to add an IDP configuration in Harmony Connect (Under settings -> Identity provider).

 

For both types of users the following most of the time resolves the issue :

Going into the browser settings -> Downloads settings (chrome://settings/downloads (if you are using Chrome)) -> And disabling "Ask where to save each file before downloading" 

chrome.png

Note : Please make sure to not re-name the file downloaded from the Harmony Connect Portal/Website as it includes information which is needed to activate the Harmony Connect agent.

Notes on local-users :

If you are getting prompted the prompt that asks for an email address, something isn't right and you should contact Check Point if the above solution didn't help.

 

Notes on IDP users : 

Make sure the IDP is fully configured with the domain you are trying to input.

If you are still getting this error, please don't hesitate to reach out to Check Point.

 

Let me know if my comment helped!

(1)

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events