Appliance Configuration
Check Point 1400 Appliances Centrally Managed Administration Guide R77.20.85 | 48
Security Management Server
In this section you can view the status of the management connection, last policy installation,
adjust trust settings, and initialize a connection.
In the Security Management Server section, click Settings to adjust trust settings or Setup to
initialize a connection. The Welcome to the Security Management Server Configuration Wizard
shows.
Click Next. In the One Time Password (SIC) page, select an option for authenticating trusted
communication:
• Initiate trusted communication securely by using a one-time password - The one-time
password is used to authenticate communication between the Check Point Appliance and
the Security Management Server in a secure manner.
Enter a one-time password and confirm it. This password is only used to establish the
initial trust. When established, trust is based on security certificates.
Important - This password must be identical to the Secure Communication
authentication one-time password configured for the Check Point Appliance object in the
SmartDashboard of the Security Management Server.
• Initiate trusted communication without authentication (not secure) - Select this option only
if you are sure that there is no risk of imposture (for example, when in a lab setting).
Click Next. In the Security Management Server Connection page, select a connection method:
• To connect to the Security Management Server now, select Connect to the Security
Management Server now, enter the Security Management Server IP or name and click
Connect. When you successfully connect to the Security Management Server, the security
policy is automatically fetched and installed.
If the Security Management Server is deployed behind a 3rd party NAT device, select
Always use this IP address and manually enter the IP address the appliance used to to
reach the Security Management Server. This IP address overrides, from this point on, the
automatic calculating mechanism that determines the routeable IP address of the Security
Management Server for each appliance.
If trust was established but the gateway could not fetch the policy, you can investigate the
issue with the Security Management Server administrator. When the issue is resolved, click
the Fetch Policy button that shows instead of the Connect button.
• To connect to the Security Management Server later, select Connect to the Security
Management Server later.
Click Finish.
To reinitialize trusted communication with the Security Management Server:
1.
In the Security Management Server section, click Advanced to reinitialize trusted
communication.
Click Reinitialize Trusted Communication.
A Warning message shows.
Click Yes.
Note - You need to coordinate this operation with the Security Management Server
administrator, as reinitialization is necessary on both sides.
To Next Page
Loading...
