While enabling the Identity Awareness blade the Identity Awareness wizard does not automatically detect the
windows domain. Why does it not detect the windows domain?
A.
Security Gateways is not part of the Domain
B.
SmartConsole machine is not part of the domain
C.
SMS is not part of the domain
D.
Identity Awareness is not enabled on Global properties
Explanation:
To enable Identity Awareness:
1. Log in to SmartDashboard.
2. From the Network Objects tree, expand the Check Point branch.
3. Double-click the Security Gateway on which to enable Identity Awareness.
4. In the Software Blades section, select Identity Awareness on the Network Security tab.
The Identity Awareness Configuration wizard opens.
5. Select one or more options. These options set the methods for acquiring identities of managed and
unmanaged assets.
AD Query – Lets the Security Gateway seamlessly identify Active Directory users and computers.
Browser-Based Authentication – Sends users to a Web page to acquire identities from unidentified users.
If Transparent Kerberos Authentication is configured, AD users may be identified transparently.
Terminal Servers – Identify users in a Terminal Server environment (originating from one IP address).
See Choosing Identity Sources.
Note – When you enable Browser-Based Authentication on a Security Gateway that is on an IP Series
appliance, make sure to set the Voyager management application port to a port other than 443 or 80.
6. Click Next.
The Integration With Active Directory window opens.
When SmartDashboard is part of the domain, SmartDashboard suggests this domain automatically. If you
select this domain, the system creates an LDAP Account Unit with all of the domain controllers in the
organization’s Active Directory.
https://sc1.checkpoint.com/documents/R76/CP_R76_IdentityAwareness_AdminGuide/62050.htm