This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Daeyx
Explorer
‎2024-05-13 03:36 PM

Identity Collector not reading AD Security Group within same User OU

Hello,

 

I am having an issue with our gateway not propagating all of AD Groups associated with users logging in and thus are not matching to the Access Role in an ACL. 

We have a Vendor that logs into our environment through Checkpoint VPN and will have all the AD Groups that they are a member of propagate properly if that specific AD Group is located in Domain/Users.

However, we have a couple of security groups present inside the same OU that the Users themselves reside in.

So the User and AD Security Group will be in Domain/Vendor/*Vendor OU* 

Any Security Group that is present within the same OU as the User will not propagate and the firewall will not see them as part of that group. Any reason as to why this is?

 

Thanks much.

Labels
0 Kudos
0 Replies

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events