This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Fran_Granados
Explorer
‎2018-06-11 09:00 AM

Change source for LDAP phone info for DynamicID

Jump to solution

Is it possible to change which LDAP attribute DynamicID uses when looking for mobile phone information?

I'd like to use "otherMobile" rather than "mobile". This is for R80.10

Thanks,

1 Solution

Accepted Solutions
ED
Advisor
‎2018-06-11 11:24 AM

Jump to solution

Hi,

Not tested this change but you can try in lab.

In GuiDBedit navigate to:

+Managed Objects -> ldap -> Microsoft_AD

In the lower pane, find the Field: PhoneNumberAttr

Double-click PhoneNumberAttr and change its value to: otherMobile

Click File -> Save all

Exit GuiDBedit, Open SmartDashboard, and install policy to your gateway

Just something else about dynamicID that might help you from CheckPoint support:

"According to R80.10 Mobile Access Admin Guide page 152, The default country code is added if the phone number stored on the LDAP server or on the local file on the gateway starts with 0.

In this case, the user's phone number doesn't start with 0 and therefore the country code wasn't added to it.

In order to the default country code to be added we must have a 0 in the first number of the phone." I hope someone from Check Point can answer why there has to be a 0 in front of the phonenumber? In my country phone numbers doesn't start with 0. 

View solution in original post

4 Replies
ED
Advisor
‎2018-06-11 11:24 AM

Jump to solution

Hi,

Not tested this change but you can try in lab.

In GuiDBedit navigate to:

+Managed Objects -> ldap -> Microsoft_AD

In the lower pane, find the Field: PhoneNumberAttr

Double-click PhoneNumberAttr and change its value to: otherMobile

Click File -> Save all

Exit GuiDBedit, Open SmartDashboard, and install policy to your gateway

Just something else about dynamicID that might help you from CheckPoint support:

"According to R80.10 Mobile Access Admin Guide page 152, The default country code is added if the phone number stored on the LDAP server or on the local file on the gateway starts with 0.

In this case, the user's phone number doesn't start with 0 and therefore the country code wasn't added to it.

In order to the default country code to be added we must have a 0 in the first number of the phone." I hope someone from Check Point can answer why there has to be a 0 in front of the phonenumber? In my country phone numbers doesn't start with 0. 

PhoneBoy
Admin
Admin
‎2018-06-12 07:48 AM
In response to ED

Jump to solution

Above is in the following SK: Configuring Two-Factor Authentication with DynamicID to send the OTP via email fails for Active Dire... 

0 Kudos
Fran_Granados
Explorer
‎2018-06-14 08:22 AM
In response to ED

Jump to solution

Thanks Enis, I can confirm that this worked.

George_Sas
Participant
‎2020-11-17 04:16 AM
In response to ED

Jump to solution

Worked for me also and I used extensionAttribute5 as the others were in use for other systems.

0 Kudos