This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
ikafka
Collaborator
‎2023-11-28 11:13 PM
Jump to solution

Checkpoint LDAP Integration

Hi,

 

First of all, I want to talk about the structure. There is an AD with many (hundreds of thousands) users. A remote Checpoint firewall is pulling users from this AD. I configured Identityy Awernes, but since the location is remote and there are too many users, user queries take a long time.

I think the problem will be solved if I pull the organization unit part of the region where the firewall is from the AD. When searching or querying users, it speeds up if it is done from a certain organization unit instead of all users.
-Can I do this organization unit part with Identity collector?
-If I can, can you share the relevant document?

Or can you suggest if there is another solution?

Thanks.

 

 

0 Kudos
1 Solution

Accepted Solutions
5 Replies
ikafka
Collaborator
‎2023-12-01 03:07 AM
In response to G_W_Albrecht
Jump to solution

Hi @G_W_Albrecht 

Thanks for your reply and for sharing this information. I have not yet been able to provide controls in the environment. I will share the solution information when it is finalized. 

0 Kudos
ikafka
Collaborator
‎2024-01-04 10:48 PM
In response to ikafka
Jump to solution

Hi

I installed with identity collector but there are small problems.

It is now doing user verification in the rules. But I want to cancel this rule and write a new rule. With this new rule, I want to check that only one computer is in a certain OU (organization unit). If this computer is in the OU, it passes the rule. I couldn't figure out how to do this rule.

0 Kudos
PhoneBoy
Admin
Admin
‎2024-01-05 12:39 PM
In response to ikafka
Jump to solution

I believe you can refer to individual machines in the Access Role, but I don't think we support groups for this function.

0 Kudos
ikafka
Collaborator
‎2024-01-16 02:19 AM
In response to PhoneBoy
Jump to solution

Hi,

 

We install identity Collector and our problem solved. 

Our environment have 42 ADC and we use 35 ADC with İdentity Collector.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events