Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
FrankXie
Participant

identity awareness

Hello expert

 

I am poc identity awareness with browser based authentication.

I am trying to forward user from identify agent to radius server for authentication. My user name is in format abc@xyz.com, but I found identity awareness only forward abc to radius server, it stripped @xyz.com. My backend radius server hence reject request. How can I keep the full name?

 

----- sorry, turns out my problem is I can't find user abc@xyz.com in my domain xyz.com, but I can find abc in my domain xyz.com. 

Then my problem is if I add xyz.com, my ldap server told me user doesn't exist. 

If I don't add xyz.com, then my rsa server told me server not exist. 

Is there a way checkpoint can remove xyz.com while search in ldap server?

 

Thanks in advance for your response.

Regards

Frank 

 

 

0 Kudos
4 Replies
Chris_Atkinson
Employee Employee
Employee

Please take a look at sk122477 and discuss further with TAC as needed.

CCSM R77/R80/ELITE
0 Kudos
FrankXie
Participant

Thanks Chris, I will reach out the TAC.

0 Kudos
Sorin_Gogean
Advisor

hi,

 

any reason you want to have the browser authentication ? I'm asking because we implemented Identity Awareness with AD via Identity Collector and all is good till now.

 

ty,

0 Kudos
FrankXie
Participant

Mainly MFA.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events