Khairul

Elevating Minds, Expanding Horizons

Check Point

[Check Point] Using AD Query with NTLMv2

By khairulanam Jan 28, 2023

Solution

  1. In SmartConsole, activate Identity Awareness without using the Identity Awareness Configuration wizard:

a. Open the Security Gateway or Cluster object.

b. On the General Properties tab, select the Network Security tab.

c. Enable Identity Awareness.

d. Click Cancel on the Identity Awareness Configuration window.

e. Verify that Identity Awareness is enabled.

f. Click OK.

g. Install the Access Policy on the Security Gateway or Cluster object.

  1. On the Security Management Server:

a. Access the command line.

b. Log in as an expert.

c. Run the command “adlogconfig a”

d. Select the option “Use NTLMv2”

e. Select the option “Exit and save”

  1. In SmartConsole, restart the Identity Awareness Configuration wizard and continue configuring Identity Awareness:

a. Open the Security Gateway or Cluster object.

b. On the General Properties tab, select the Network Security tab.

c. Disable Identity Awareness, do not click OK.

d. Enable Identity Awareness.

e. Continue configuring Identity Awareness in the wizard.

f. Click OK.

g. Install the Access Policy on the Security Gateway or Cluster objec

To enable NTLMv2 support for AD Query:

  1. In SmartConsole, activate Identity Awareness without using the Identity Awareness Configuration wizard:

a. Open the Security Gateway or Cluster object.

b. On the General Properties tab, select the Network Security tab.

c. Enable Identity Awareness.

d. Click Cancel on the Identity Awareness Configuration window.

e. Verify that Identity Awareness is enabled.

f. Click OK.

g. Install the Access Policy on the Security Gateway or Cluster object.

  1. On the Security Management Server:

a. Access the command line.

b. Log in as an expert.

c. Run the command “adlogconfig a”

d. Select the option “Use NTLMv2”

e. Select the option “Exit and save”

  1. In SmartConsole, restart the Identity Awareness Configuration wizard and continue configuring Identity Awareness:

a. Open the Security Gateway or Cluster object.

b. On the General Properties tab, select the Network Security tab.

c. Disable Identity Awareness, do not click OK.

d. Enable Identity Awareness.

e. Continue configuring Identity Awareness in the wizard.

f. Click OK.

g. Install the Access Policy on the Security Gateway or Cluster object.

By khairulanam

Related Post

Check Point

[Check Point] How to find out the local database user in Check Point appliances?

khairulanam Jan 31, 2023
Check Point

[Check Point] How to find Check Point Management Server IP address from the Security Gateway

khairulanam Jan 30, 2023
Check Point

[Check Point] How to export Check Point logs to Splunk SIEM using the Log Exporter tool?

khairulanam Jan 30, 2023

Leave a Reply

Your email address will not be published. Required fields are marked *

You Missed

Ruckus

[Ruckus] Troubleshooting 802.1x (dot1x) authentication

Check Point

[Check Point] How to find out the local database user in Check Point appliances?

Check Point

[Check Point] How to find Check Point Management Server IP address from the Security Gateway

Check Point

[Check Point] How to export Check Point logs to Splunk SIEM using the Log Exporter tool?