Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Martin_Raska
Advisor
Advisor

User Location, usage?

Hello guys,

what is the usage for field Location under user tab? Admin guide and HELP does not clear this.

0 Kudos
5 Replies
Nick_Doropoulos
Advisor

Hi Martin,

I think it would be fair to say to think of this setting as defining "trusted clients" but instead of limiting access to a Server/Gateway you can limit access to other objects as well like networks etc.

I hope that helps.

0 Kudos
Martin_Raska
Advisor
Advisor

Why I should use that, we have policy to limit users access. Does this apply for users VPN?

0 Kudos
AlekseiShelepov
Advisor

From sk92467

The user has a host object defined in the source of allowed locations in its properties. the expected configuration requires that this user properties be defined using network objects, and not a specific host object.

Allowed Location required Office Mode, in the case of a VPN client, it require the office mode range as the source when Office Mode is defined on the gateway. 

I suppose we can assume from this, that the location setting is set per user when you have more general rules for networks. For example we allow all remote users to access server network, but some users (based on name, not on IP) can connect to some specific server, other users can connect to only other servers.

Not sure where is the profit.

0 Kudos
PhoneBoy
Admin
Admin

This is kind of a "legacy" setting from ages ago when we didn't have things like Access Roles or Mobile Access Blade Smiley Happy

It is primarily to restrict the networks from which or to which a given user may connect using Remote Access VPN above and beyond those imposed by the rules.

Chris_Butler
Collaborator

I know this is an old post, but please correct me if my assumptions below are incorrect:

1) if there are no entries defined in this field for a user, the user can access any host or network that the Mobile Access policy or local gateway security policy allows

2) if there are ANY entries in this setting for a user, the user can access ONLY the listed hosts or networks and all other destinations are blocked, even if mobile access or local gateway security policies would allow it otherwise?

 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events