This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
xiro
Contributor
‎2017-10-12 04:31 AM

Threat Extraction: Link to original file

Hi,

I want to implement Threat Extraction for mail traffic, with the possibility for the users to get the original file if necessary.

The setup is done via MTA on local TE100X. So, for now everything is fine, the cleaned file is attached to the mail (file.cleaned.pdf) and the reference link to the original file is added to the body of the mail.

But when clicking on the link, it opens the Gaia Portal of the TE1000X with the need to log in:

The user account of the test user is not working (obviously, no AD-integration of SB-Appliance).

When logging in with the admin user, it shows the management overview (which shouldn't be accessible for normal users).

So - how to configure this properly, so that normal users can access the original files (ideally without logging in)?

Any ideas? I couldn't find any guide or SK that describes this properly...

Thanks & BR

2 Replies
xiro
Contributor
‎2017-10-12 07:55 AM

OK, got it - The UserCheck Portal settings for the TE1000X were not set properly... so it redirected to the Gaia Portal.

Solved.

Thomas_Werner
Employee Alumnus
Employee Alumnus
‎2017-10-27 06:44 AM
In response to xiro

Hi Amir,

it might be useful to know that with a current JHF installed you can also add a "Get original email" option in addition to the "Get original file" feature.

Procedure is described in Threat Extraction image cleaning and other enhancements hotfix Section (3) List of new features -> 01988578

Regards Thomas

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events