Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
MrSalazar
Participant
Jump to solution

Mobile Access Blade on a Centrally managed SMB 1490

Hi, 
Maybe somebody had already this issue, after the Upgrade from the Mgmt Server is not possible to enable the Mobile Access Blade on a SMB 1490.
Locally managed it is posible but the Idea of Central Managed is not. 
Any suggestion? maybe is a Bug or maybe the incorrect way how to activate it. 

0 Kudos
1 Solution

Accepted Solutions
G_W_Albrecht
Legend
Legend

You do not give details of what you try to do here - on SMB, no MAB Portal is available, so you only have SNX /SSL VPN RA clients and  SSL VPN Bookmarks (links or RDP). You are unable to activate MAB in Dashboard, all you can do is activate SNX RA VPN clients in VPN Clients > Other. This is also true  for R80.20.01 15x0 devices !

Check Point R77.20.xx for 600 / 700 / 1100 / 1200R / 1400 / 910 Appliance Features and Known Limitations &

Check Point R80.20 for 1500 Appliances Features and Known Limitations :

Mobile Access Blade Partial Partial All
  •   Remote access clients are supported (Endpoint, SNX). 
  • Mobile Access Web Portal is not supported.
CCSE CCTE CCSM SMB Specialist

View solution in original post

0 Kudos
14 Replies
G_W_Albrecht
Legend
Legend

You do not give details of what you try to do here - on SMB, no MAB Portal is available, so you only have SNX /SSL VPN RA clients and  SSL VPN Bookmarks (links or RDP). You are unable to activate MAB in Dashboard, all you can do is activate SNX RA VPN clients in VPN Clients > Other. This is also true  for R80.20.01 15x0 devices !

Check Point R77.20.xx for 600 / 700 / 1100 / 1200R / 1400 / 910 Appliance Features and Known Limitations &

Check Point R80.20 for 1500 Appliances Features and Known Limitations :

Mobile Access Blade Partial Partial All
  •   Remote access clients are supported (Endpoint, SNX). 
  • Mobile Access Web Portal is not supported.
CCSE CCTE CCSM SMB Specialist
0 Kudos
MrSalazar
Participant
Hi @G_W_Albrecht,
So that explains why this option on the Gateway Object in the SmatConsole is greyed out, so if we have license for MAB, that means SNX or Endpoint?
0 Kudos
G_W_Albrecht
Legend
Legend

A MAB license is a blade license bound to a GAiA gateway - and Embedded GAiA 1490 appliances do neither have the MAB blade nor any MAB license at all ! So that means SNX or Endpoint, yes...

CCSE CCTE CCSM SMB Specialist
0 Kudos
MrSalazar
Participant
Thank you ver much
0 Kudos
PointOfChecking
Collaborator

Hi,

I am trying to do the same on an 1800 quantum appliance. On the marketing material it says it has mobile access.

 

Capture18.PNG

also, in my GW object it shows as available.  however, I just can't click on it to enable as it's greyed out.

0 Kudos
Wolfgang
Authority
Authority

Same with 1800 and 1600 appliances as with 1490, all embedded GAiA appliances have no MOB blade. Only SNX and remote vpn capabilities available.

0 Kudos
PointOfChecking
Collaborator

Thank you.

Can you point me in the direction of "remote vpn capabilities" please? 

 

Thank you.

0 Kudos
G_W_Albrecht
Legend
Legend

RA.png

CCSE CCTE CCSM SMB Specialist
0 Kudos
PointOfChecking
Collaborator

Thanks, how do I enable that option?  I don't have it.

It's centrally managed (by Smart-1 R80.40) running R80.20

 

Capture.PNG

0 Kudos
G_W_Albrecht
Legend
Legend
 

RA_CM.png

CCSE CCTE CCSM SMB Specialist
0 Kudos
PointOfChecking
Collaborator

EDIT*  I should enable IPSec VPN not Mobile Access.  Sorry, I have enabled and I can see the options now.  Thanks.

0 Kudos
PointOfChecking
Collaborator

*edit* This was posted before the above posts in conversation.

 

I have realised I used the wrong terminology.  I am looking to enable Remote Access as below photo.  Where do I go to enable this?

Capture.PNG

0 Kudos
PhoneBoy
Admin
Admin

Since your SMB appliance is centrally managed, this is configured on your management.
If you've pushed a policy to your SMB gateway that includes Remote Access VPN configuration (for example a Remote Access Encryption Domain), I would expect that to be enabled.
If it's not, then it might just be a cosmetic bug and it should be taken with the TAC.

0 Kudos
PointOfChecking
Collaborator

Hi PhoneBoy,

 

Thanks, but I have it enabled now.

 

The "VPN OFF" post was posted before the other comment.

Thanks for the advice anyway 🙂 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    Tue 23 Apr 2024 @ 08:00 AM (CDT)

    South US: HTTPS Inspection Best Practices

    Tue 23 Apr 2024 @ 11:00 AM (EDT)

    East US: What's New in R82

    Thu 25 Apr 2024 @ 11:00 AM (SGT)

    APAC: CPX 2024 Recap

    Tue 30 Apr 2024 @ 03:00 PM (CDT)

    EMEA: CPX 2024 Recap

    Tue 23 Apr 2024 @ 08:00 AM (CDT)

    South US: HTTPS Inspection Best Practices

    Tue 23 Apr 2024 @ 11:00 AM (EDT)

    East US: What's New in R82

    Thu 25 Apr 2024 @ 11:00 AM (SGT)

    APAC: CPX 2024 Recap

    Tue 30 Apr 2024 @ 03:00 PM (CDT)

    EMEA: CPX 2024 Recap

    Thu 02 May 2024 @ 11:00 AM (SGT)

    APAC: What's new in R82
    CheckMates Events