|
|
|
Check Point Identity Collector is a Windows-based application, which collects information from Identity Sources about identities and their associated IP addresses. The Identity Collector then sends this information to the Identity Awareness Gateway for identity enforcement.
The Identity Collector supports these Identity Sources:
The Identity Collector can connect with more than one Identity Source at a time. The Identity Sources are organized in Query Pools.
A Query Pool is an object, which contains a number of Identity Sources. Each Query pool is assigned to one gateway. The Identity Collector collects information from the Identity Sources in the Query Pools and sends the information to the gateways.
For example: An environment has two domains: Asia.com and Euro.com.
The administrator wants the Asia Gateway to get the events from all the 4 domain controllers in the Asia.com domain. He also wants the Euro Gateway 1 and Euro Gateway 2 to get the events from all the 6 domain controllers in the Euro.com domain.
The administrator, therefore, creates 2 Query Pools: one, which contains all the domain controllers in the Asia.com domain, and another one, which contains all the domain controllers in the Euro.com domain.
The administrator will configure the Asia Gateway to get events from the Asia Query Pool, and the two Euro Security Gateways to get events from the Euro Query Pool.
