Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Rohit_Raut
Participant

Checkpoint identity collector and Cisco ISE integration

 Hi,

We are trying to integrate cisco ISE with identity collector. We can see 'certificate unknown' log in tcpdump captures. Below snapshot FYR.

where, 10.10.1.37 is identity collector server and 172.24.16.40 is cisco ISE.

 
 
 
 
 

Capture.PNG

Identity collector activity log

MicrosoftTeams-image.png

In identity collector status show 'pending for administrator approval' but we don't see a request in ISE webui. We have followed the document below.

https://community.checkpoint.com/fyrhh23835/attachments/fyrhh23835/general-topics/10644/1/Check%20Po...

We used below default self signed certificate from ISE

Untitled.png

Can someone, who has done it successfully, let us know the exact steps that were followed and the certificate that need to be exported from ISE? We have followed the above document for 3 times but every time we are getting the same issue.

0 Kudos
Reply
1 Reply
G_W_Albrecht
Champion
Champion

Did you consult Identity Awareness R80.40 Administration Guide p.86 ? I find that very valuable, same is true of sk108235: Identity Collector - Technical Overview.

0 Kudos
Reply