pdp ad
General Syntax
|
|
The 'pdp ad associate' command
Description
For the AD Query
Check Point clientless identity acquisition tool. It is based on Active Directory integration and it is completely transparent to the user.
The technology is based on querying the Active Directory Security Event Logs and extracting the user and computer mapping to the network address from them. It is based on Windows Management Instrumentation (WMI), a standard Microsoft protocol.
The Check Point Security Gateway communicates directly with the Active Directory domain controllers and does not require a separate server.
No installation is necessary on the clients, or on the Active Directory server., adds an identity to the Identity Awareness Check Point Software Blade on a Security Gateway that enforces network access and audits data based on network location, the identity of the user, and the identity of the computer. Acronym: IDA. database on the Security Gateway Dedicated Check Point server that runs Check Point software to inspect traffic and enforce Security Policies for connected network resources..
The group data must be in the AD.
Syntax
|
|
Parameters
|
Parameter |
Description |
|---|---|
|
|
Specifies the IP address for the identity. |
|
|
Specifies the username for the identity. |
|
|
Specifies the Domain of the ID server. |
|
|
Specifies the computer that is defined for the identity. |
|
|
Specifies the timeout for the AD Query. Default timeout is 5 hours. |
|
|
Associates the " First, adds the " |
The 'pdp ad disassociate' command
Description
For the AD Query, removes the identity from the Identity Awareness database on the Security Gateway.
Identity Awareness does not authenticate a user that is removed.
Syntax
|
|
Parameters
|
Parameter |
Description |
|---|---|
|
|
Specifies the IP address for the identity. |
|
|
Specifies the username for the identity. |
|
|
Specifies the computer that is defined for the identity. |
|
|
Specifies the reason to show in SmartConsole |