software version R80.40 - Build 106 - HOTFIX_R80_40_JUMBO_HF_MAIN Take: 83

Thanks Amiad,

That is indeed correct, I was able to create an Access Role and browse through AD. Also for anyone else that is facing the same issue, I also enabled Identity Awareness and while I wasn't able to also connect to AD during blade activation, I ignored it and continued, I manually added my AD in the for Active Directory Query - settings section. when testing, I was able to see the machine hostname and user full name.

Thanks again.

Hi @Amiad_Stern ,

I did follow as you mentioned.

However when I trying to create the Access Role, I unable to access the AD  as below:

Is there anything that I'm missing?

Regards,

Fatihah

Hi @Fatihah ,

I'm no longer the owner of Smart-1 Cloud. I'll refer this thread to the relevant owners for them to address your issue.

Regards,

Amiad.

Hi @Amiad_Stern,

Oh I see. Sure and thanks for your help.

Hopefuly, they able to assist me on this issue.

Regards,

Fatihah

Hi @Fatihah, 
Apologies for delay. Did you solved the above issue? Is it still relevant? 

Hi @dzianiss ,

According to the admin guide you linked the cloud server will use the gateway as a proxy, but it doesn't give me any options for a proxy on the LDAP account unit. Is there a setting that should make my gateway available as a proxy?

Hi @Kevin_Morris ,

Which gateway platform/version are you using?

Also please check version of management and smartconsole build.

Quantum Spark 1600 on R81.10

And which smartconsole build and smart-1 cloud version?

SmartConsole 81.20.9700.451 / Smart-1 Cloud R81.20.

You can only select gateways running R80.20 and above as the proxy.
This does not currently include Quantum Spark devices.

Actually it looks like you can select them if SmartConsole version is 81.20.9700.631. I was using .451 before. Now the question becomes does it actually work. So far I still can't get users and groups from AD.

Quantum Spark 1500 1600 1800 were added to support AD proxy feature with R81.20 security management.
Please check if you accurately configured:

1. Host for AD DC Server
2. ldap account unit, all required tabs:
   1. General - Profile: Micrsoft_AD, Domain, User Management and Enable unicode support checked
   2. Servers - added your AD DC Server and all required fields filled in LDAP Server Properties
   3. Objects Management - Manually added Branch, proxy through: your GW selected

I'm curious when this was added since it's still listed as a known limitation in the relevant SK for R81.10.00: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...
The bug ID is SMB-16255.
It's possible this may have been added to R81.10.05 (currently in EA), though I didn't see it mentioned in the feature list. 

Hi, AFAIK it was added in R80.20.50. I've tested this version and R81.00. Probably it was not announced in SMB project before R81.20 GA. From my side I can open bug for SMB to include it in resolved issues. I already opened bug for Management Guide - TP-10270.

I can finally confirm this works with the 1600 SMB on R81.10.00 Build 996000575 and SmartConsole version 81.20.9700.631 in Smart-1 Cloud. 

hi @Kevin_Morris ,

Trying to configure the same with 1800. Would you please help on this. 
what to refer, steps to be taken.

@maddah87  yes this is possible. You have to follow How to Connect a Local Active Directory to Smart-1 Cloud 

Your Smart-1 cloud instance has to be on R81.20 and firmware on 1800 appliance R81.xx

It was success, on the same day. Branch was added manually and it worked.

Thanks all.

Hi, 

I this feature currently available for Spark gateways.

Admin guide says supported Embedded Gaia R80.20.xx and above. struggling configuring the same.

You need to be on R80.20.50 and R81.20 Management with the relevant JHF.
See: https://support.checkpoint.com/results/sk/sk159772

It worked,

Thanks all