This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Anna_Ushakova
Contributor
‎2019-04-08 02:34 AM
Jump to solution

Captive portal

Hi!

Users of non-domain PC started having problems with authorization on the captive portal. When you try to enter your login and password - writes that your session has expired. What could be the problem?

 

Thank 😃

0 Kudos
1 Solution

Accepted Solutions
D_W
Advisor
‎2019-04-09 04:12 AM
In response to Nick_Doropoulos
Jump to solution

We had this too in the past. Possibly the Multi Portal is not working correctly.
If you have a cluster try to fail over and test. Otherwise try to check the status of the Portal (mpclient status <portalname>)  and or restart the Multiportal.

KR
David

View solution in original post

0 Kudos
7 Replies
Nick_Doropoulos
Advisor
‎2019-04-08 02:59 AM
Jump to solution

Hi Anna,

Could you please answer the following questions so we can narrow down the potential causes:

  1. How many users are affected?
  2. Is this a new problem? Had the affected users experienced the same symptom before? If not, are you aware of any changes that could have occurred recently?
  3. Is the problem intermittent or consistent?
  4. Can you confirm that the problem occurs across all browsers?

If you could also provide us with the output of the following command it would be great:

[in clish] show version all

Finally, a screenshot of the relevant error would help tremendously as well.

Anna_Ushakova
Contributor
‎2019-04-08 04:34 AM
In response to Nick_Doropoulos
Jump to solution

1)All non-domain PC users
2)New problem
3)The problem periodically arises - and not for long holds and leaves. The last 2 weeks became more frequent
4)Yes, all browsers

cp-gw> show version all
Product version Check Point Gaia R80.10
OS build 421
OS kernel version 2.6.18-92cpx86_64
OS edition 64-bit

cp-smart> show version all
Product version Check Point Gaia R80.10
OS build 421
OS kernel version 2.6.18-92cpx86_64
OS edition 64-bit
0 Kudos
Nick_Doropoulos
Advisor
‎2019-04-09 02:33 AM
In response to Anna_Ushakova
Jump to solution

Hi Anna,

Could you provide us with the following as well please:

1) A screenshot of the error the affected users encounter.

2) A screenshot of the gateway's logs while the problem is being reproduced.

 

Thanks.

Anna_Ushakova
Contributor
‎2019-04-09 02:43 AM
In response to Nick_Doropoulos
Jump to solution

content_cp011.jpgcontent_cp012.jpg

0 Kudos
Nick_Doropoulos
Advisor
‎2019-04-09 03:32 AM
In response to Anna_Ushakova
Jump to solution

Thanks for providing the requested info. 

The next item that needs to be examined now is the way that Identity Awareness has been configured on your gateway. 

More specifically:

1) What are the identity sources being used here? I am assuming that Browser-Based authentication has to be one of them given that we are trying to achieve access via the Captive Portal.

2) Are the affected users required to have the identity agent installed on their machines?

3) Provided the assumption on Step 1 is correct, navigate to the settings of the Browser-Based Authentication source

1.PNG

and tells us the session length for unregistered guests (since the affected users have not joined the domain and are therefore not known by the gateway).

2.PNG

4) What happens when a domain-registered user tries to log in to the Captive Portal from the same machine? Does the same symptom occur?

D_W
Advisor
‎2019-04-09 04:12 AM
In response to Nick_Doropoulos
Jump to solution

We had this too in the past. Possibly the Multi Portal is not working correctly.
If you have a cluster try to fail over and test. Otherwise try to check the status of the Portal (mpclient status <portalname>)  and or restart the Multiportal.

KR
David

0 Kudos
D_W
Advisor
‎2019-04-09 04:25 AM
In response to Anna_Ushakova
Jump to solution

 
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events