This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
lior_me1
Participant
‎2019-03-21 12:42 AM

active directory users are not logged or honored in policy - r80.10

i've setup a domain, i've enabled identity awerness

i've created an access rule, which based on a group that's containing the users

i've created a policy saying they can go to the internet, but when i try to access the web, the gaia is ignoring the users, and simply blocks the communication in a standard deny policy with no reference to source user, just ip (ip is not permitted to access, only ad users)

0 Kudos
4 Replies
PhoneBoy
Admin
Admin
‎2019-03-21 09:50 PM

Might want to start with some basic troubleshooting as described here: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...
0 Kudos
lior_me1
Participant
‎2019-03-24 05:45 AM
In response to PhoneBoy

thank you. do i need the identity collector to make it work? i think i've seen systems work without it
0 Kudos
PhoneBoy
Admin
Admin
‎2019-03-24 04:27 PM
In response to lior_me1

Is it strictly required? No.

Is it recommended in larger environments (more than a few thousand users)? Yes.

0 Kudos
lior_me1
Participant
‎2019-03-24 06:41 AM
In response to PhoneBoy

sorry. my mistake. i was testing directly on the dc. when i do it on a workstation. it's working fine
0 Kudos