Hi,

When I run those commands, this is the output I get:

The same output is on a Gateway running 80.40 JHF T83 and on 80.30 JHF T219.

Am I doing something wrong?

There is no connectivity issues between Identity Collector and the Gateways (both VSX), nor are there any firewalls on the way. Identity collector version is the latest one from CP, it has configured six DCs, with all of them generating events visible through IC dashboard.

Why not have TAC resolve this ? Does not look healthy...

Already have a few TAC cases open. Would really like not to have to open a TAC case for every minor change or implementation in a Check Point environment. 😐

But, if necessary will do so...

Works like a charm, thank you very much 😊

Grateful that no TAC was necessary 😉

Hi @Hrvoje_Brlek ,

 I have same problem in R80.30 take 255. Since I enabled IDC and removed Ad Query (wmi access denied since last patch for windows server), the "Source User Name" field is not displayed on the logs tab. As a result, some policies are not being matched.  In IDC side everything seems fine: 

# pdp idc status
Identity Collector IP: X.X.X.X
Identity Sources:
No information about identity sources

pdp conn idc

Number of IDCollector sessions: 1
------------------------------------------------------------------------------------------------------------
# IP Number of events Shared secret status Last Event
------------------------------------------------------------------------------------------------------------
1 x.x.x.x Valid No events received in the last hour

¿How to fix?

Regards

Hi @daniextremo, this was a post from a few years ago, but as I recall I followed the section "Monitoring Capability" in sk108235 and it helped -> you need to add the Registry Key on the IDC server (Windows machine).

Thanks for reply @Hrvoje_Brlek . I could fix the problem. 

Regards!