This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Moftsi
Participant
a week ago

Issue with User Awareness Query on Check Point SMB (Locally Managed)

Hi Everyone,

We are currently configuring User Awareness on a Check Point SMB firewall with local management, but we are unable to query users from our Active Directory (AD) server.

We are using a non-administrator account and have modified the group permissions according to sk93938 (Using Identity Awareness AD Query without Active Directory Administrator privileges on Windows Server 2008 and higher).

Troubleshooting Steps Taken:
We confirmed that the Gateway can ping the AD server.

The Gateway can access the AD server on port 389 (verified through firewall logs).

We also tested authentication using an Administrator account to rule out permission issues, but the problem persists.

Has anyone encountered this issue when using local deployment? Any insights would be greatly appreciated.

Thanks for reading!

Preview file
15 KB
Preview file
13 KB
0 Kudos
8 Replies
G_W_Albrecht
Legend Legend
Legend
a week ago

Can you please specify model and firmware of the SMB ? Where is the AD situated, locally at site ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Moftsi
Participant
a week ago
In response to G_W_Albrecht

Hi Albrecht,

We using CP 2000 series with firmware 81.10.15

0 Kudos
G_W_Albrecht
Legend Legend
Legend
a week ago
In response to Moftsi

Where is the AD situated, locally at site ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Moftsi
Participant
a week ago
In response to G_W_Albrecht

We using AD server locally site with topo seem like this

z6428227472461_202cb78a60ce88927be9793caa2d1ccb.jpg

0 Kudos
G_W_Albrecht
Legend Legend
Legend
a week ago
In response to Moftsi

So the issue seems the internal firewall - did you enable IA there also and set it to Identity Sharing ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Moftsi
Participant
a week ago
In response to G_W_Albrecht

I am just test this option on internal firewall but it seem to not working.

Preview file
31 KB
0 Kudos
PhoneBoy
Admin
Admin
a week ago
In response to Moftsi

That will only work with gateways managed by the same management, which is not the case here since your SMB gateway is locally managed.
I suspect you'll need a TAC case to understand why you're getting an internal error adding the AD server.

0 Kudos
G_W_Albrecht
Legend Legend
Legend
a week ago
In response to PhoneBoy

So one solution would be to put SMB GW under same management as internal GW...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events