John Adams is an HR partner in the ACME organization. ACME IT wants to limit access to HR servers to designated IP addresses to minimize malware infection and unauthorized access risks. Thus, the gateway policy permits access only from John’s desktop which is assigned a static IP address 10.0.0.19.
John received a laptop and wants to access the HR Web Server from anywhere in the organization. The IT department gave the laptop a static IP address, but that limits him to operating it only from his desk. The current Rule Base contains a rule that lets John Adams access the HR Web Server from his desktop with a static IP (10.0.0.19). He wants to move around the organization and continue to have access to the HR Web Server.
To make this scenario work, the IT administrator:
1)Enables Identity Awareness on a gateway, selects AD Query as one of the Identity Sources installs the policy.
2)Adds an access role object to the Firewall Rule Base that lets John Adams PC access the HR Web Server from any machine and from any location.
3)Changes from static IP address to DHCP for the client PC.
What should John request when he cannot access the web server from his laptop?
A. John should lock and unlock his computer
B. Investigate this as a network connectivity issue
C. The access should be changed to authenticate the user instead of the PC
D. John should install the Identity Awareness Agent
AD Query maps the users based on AD activity. This can take some time and depends on user activity. If John Adams is not identified (the IT administrator does not see the log), he should lock and unlock the computer.
Check here :- https://sc1.checkpoint.com/documents/R76/CP_R76_IdentityAwareness_AdminGuide/62007.htm
D:
https://sc1.checkpoint.com/documents/R76/CP_R76_IdentityAwareness_AdminGuide/62007.htm
It´s D:
When necessary, you can configure specific groups to download the Identity Agent. For example, if you have a group of mobile users that roam and it is necessary for them to stay connected as they move between networks.
Reference:
https://dl3.checkpoint.com/paid/66/66be37008976888cde9759559fa83221/CP_R80.30_GA_IdentityAwareness_AdminGuide.pdf?HashKey=1579015305_3d6929b4c004def2fe97be51a3b0671d&xtn=.pdf