This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Help

Who rated this post

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
the_rock
MVP Diamond
MVP Diamond
‎2024-01-03 04:56 PM
In response to Joe_Kanaszka

K, so just checked some old notes and yes, you can modify ipassignment.conf file with groups as sk indicates, as long as they match with what you have on AD side. TAC confirmed this while ago in case we had for a customer.

Btw, below is sk Im referring to:

https://support.checkpoint.com/results/sk/sk33422

Now...WHY enable IA blade? Im sure different people may give you different answers, but personally, here is what I ALWAYS say to people. Its because logs will follow the user no matter where they log in, otherwise, good luck tracking it down by an IP address. And yes, you do have to have IA blade enabled to create access roles, otherwise, policy would never install without it.

Hope that helps.

Best,

Andy

Best,
Andy
"Have a great day and if its not, change it"
(1)
Who rated this post