Forum Discussion
Cloud App Security lack of integration with checkpoint FW
We have cloud app security as part of our microsoft estate We also have checkpoint firewalls as our main firewall for our on site security Unfortunatley according to the compatibility matrix for t...
Hi Steve,
Cloud App Security's Shadow IT Discovery is based on inteligent analysis of traffic logs generated by the customer's Proxy/Firewall. Thefore, the granualrity of the Discovery report and the ability to provide visibilty into specific users and data quantities tightly relies on the data logged in the traffic by the appliance. Cloud App Security cannot show or analyze attributes that are not included in your logs.
As you saw in the compatibiltiy matrix (available at https://docs.microsoft.com/en-us/cloud-app-security/set-up-cloud-discovery), Checkpoint Firewalls do not include username nor data quanitites information.
Unfortunatley, I am not aware of any plans from Checkpoint to add these attributes. However, I can assure you that once they are added Cloud App Security will support them.
Thanks,
Niv
Dear all,
understand, but I guess that Checkpoint has these attributes. But of course you have to have appropriate license/blade activated. Checkpoint has Identity Awareness blade, which collects for example Active Directory users/computers and extend its log information with this. Also there is way to enable Application Control/URL filtering/IPS blade, switch on accounting information on firewall rules to gather traffic data, and show such a information in Event Manager, Report Manager, guess there should be some way how to extend support of CheckPoint devices for CloudApp Security.
Thanks Mical.
We will follow up with our colleagues in CheckPoint of the extend support you described.
CC - Danny Kadyshevitch