Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
ebalmon
Participant
Jump to solution

End-Users connected in 1570 appliance

Hi mates,

Is there any way to see end-users connected via CLI in a 1570 appliance?

 

Thanks in advance

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin

It's what allows you to associate IP addresses to usernames and requires a connection to your Active Directory server.
You configure it here:

image.png

Unfortunately, the only method supported on the SMB appliances currently is ADQuery, which may not work if your AD servers have recently been patched.
Refer to: https://community.checkpoint.com/t5/Security-Gateways/WMI-Permission-denied-From-this-months-Windows... 

View solution in original post

(1)
12 Replies
Chris_Atkinson
Employee
Employee

Just to confirm are you asking about VPN users or Admins connected via SSH or something else?

 

 

0 Kudos
ebalmon
Participant

Users connected to LAN or WIFI

0 Kudos
Chris_Atkinson
Employee
Employee

Is Identity Awareness enabled?

0 Kudos
ebalmon
Participant

No, could you tell me about that?

0 Kudos
PhoneBoy
Admin
Admin

It's what allows you to associate IP addresses to usernames and requires a connection to your Active Directory server.
You configure it here:

image.png

Unfortunately, the only method supported on the SMB appliances currently is ADQuery, which may not work if your AD servers have recently been patched.
Refer to: https://community.checkpoint.com/t5/Security-Gateways/WMI-Permission-denied-From-this-months-Windows... 

(1)
Lesley
Contributor

Try this one (I assume you mean VPN clients):

vpn tu tlist

vpn tu -t tlist

To be honest I would recommend the web interface. GAIA embedded has less commands for on the CLI so it is a bit limited. For example you cannot run cpview. 

0 Kudos
PhoneBoy
Admin
Admin

cpview is available on SMB appliances with R81.10 firmware:

image.png

Not sure if information about connected VPN users is there.

0 Kudos
(1)
ebalmon
Participant

Hi, 

 

sorry, I mean users connected to LAN or WIFI. Thanks for the tip

0 Kudos
G_W_Albrecht
Legend
Legend

Use WebGUI - not CLI...

CCSE CCTE CCSM SMB Specialist
0 Kudos
ebalmon
Participant

Hi,

It is a specific need to do it through the CLI to run it with a troubleshooting script. Shouldn't it be possible to do it if it's also done via GUI?

Thanks for your help

0 Kudos
G_W_Albrecht
Legend
Legend

I think the scripting used for GUI can read details that are not directly available as commands in clish / bash. This would be a RFE...

CCSE CCTE CCSM SMB Specialist
0 Kudos
PhoneBoy
Admin
Admin

If you have Identity Awareness enabled, you can use the various CLI commands to query said database (for example adlog a query all).
These are for regular gateways but the commands here should also work on the SMB appliances in expert mode: https://sc1.checkpoint.com/documents/R81.10/WebAdminGuides/EN/CP_R81.10_IdentityAwareness_AdminGuide...

0 Kudos