CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


Tim Hall has done it again! He has just released the 2nd edition of "Max Power".
Rather than get into details here, I urge you to check out this announcement post.
It's a massive upgrade, and well worth checking out. -E

 

Results 1 to 2 of 2

Thread: Mobile Access Rules for Capsule Connect/VPN Mobile Apps

  1. #1
    Join Date
    2015-10-01
    Posts
    37
    Rep Power
    0

    Default Mobile Access Rules for Capsule Connect/VPN Mobile Apps

    Hello,

    I'm trying to figure out how the mobile access and firewall policies must be configured to allow access only to specific applications via the capsule connect/VPN mobile apps (instead of capsule workspace app).

    i.e. after user connects and assigned an office-mode IP, he/she can connect to all destinations allowed by the firewall-blade policy (if there is a rule for the office-mode IP range as the source), even if a mobile access rule doesn't exist for that user and that destination. Does this make sense? This way all accesses are common for all users.

    What configuration is needed to allow only per-user access?

    Thanks,

  2. #2
    Join Date
    2017-07-21
    Location
    Duesseldorf, Germany
    Posts
    12
    Rep Power
    0

    Default Re: Mobile Access Rules for Capsule Connect/VPN Mobile Apps

    Quote Originally Posted by Dave365 View Post
    Hello,

    I'm trying to figure out how the mobile access and firewall policies must be configured to allow access only to specific applications via the capsule connect/VPN mobile apps (instead of capsule workspace app).

    i.e. after user connects and assigned an office-mode IP, he/she can connect to all destinations allowed by the firewall-blade policy (if there is a rule for the office-mode IP range as the source), even if a mobile access rule doesn't exist for that user and that destination. Does this make sense? This way all accesses are common for all users.

    What configuration is needed to allow only per-user access?

    Thanks,
    Hello, i am also interrested in a solution for that. I authenthicate the user in the first way with RSA. My idea was to do another authenthication with AD and give the user a special OU and for this
    i create another policy that match to the AD authenthication with the corresponding OU.

    Regards
    Marco

Similar Threads

  1. Mobile VPN IOS - Connect on demand
    By pebbles5 in forum Mobile Access Blade (Formerly Connectra)
    Replies: 0
    Last Post: 2013-07-13, 07:39
  2. Mobile Access + SSO
    By Napoji in forum Mobile Access Blade (Formerly Connectra)
    Replies: 1
    Last Post: 2012-09-11, 23:38
  3. mobile access ssl vpn
    By mmaron in forum Mobile Access Blade (Formerly Connectra)
    Replies: 1
    Last Post: 2012-05-24, 03:00
  4. Replies: 0
    Last Post: 2011-08-01, 09:21
  5. SecureClient R60 using Vodafone Mobile Connect 3G
    By Testing-123 in forum SecureClient/SecuRemote
    Replies: 4
    Last Post: 2009-03-23, 05:27

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •