This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
minhhaivietnam
Collaborator
‎2019-12-22 11:46 PM

Application and URL filtering not recognize different users on same machine

Dear All,

I have firewall internet R80.10 running Application &URL filtering blade.
I created internet access policy for users in company (PC running windown10)
Example:
Peter-------Can go internet with URL1,2,3,4 (I call URL_SET01)

John----------Can go internet with URL5,6,7,8 (I call URL_SET02)

Peter,John... are accounts I get from AD server via indentity awareness blade.
Everythink is working ok.

The problem is that: when Peter uses his AD account to login PC_of_John, then Peter logout,
then John logon his PC again=> Then John can not access website URL_SET02.
I search in smartlog, column "Source User Name" shows all users who have loged in PC of John.

Like this:

user1.png

I try to restart PC then sometime the thing works ok, sometime not.
Please help what we can do on firewall to solve this.


THANKS!!!

 

 

 

0 Kudos
2 Replies
Maarten_Sjouw
Champion
Champion
‎2019-12-23 01:30 AM

On your gateway go to the settings of Identity Awareness and click on the settings button for Active Directory Query.
You will get a window with the user/machine association time, which defaults to 720 minutes.
Change this time, when you have this user change per PC happening a lot, to a lower time.
Also the setting 'Assume 1 user per computer' can be unticked to make sure this is not bugging you.
Regards, Maarten
0 Kudos
Chris_Atkinson
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
‎2019-12-23 01:55 AM
In response to Maarten_Sjouw

If you need this to be more precise the prefered solution is the Identity Agent installed on the client PC.

CCSM R77/R80/ELITE
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events