https://community.checkpoint.com/t5/Firewall-and-Security-Management/Compliance-Blade-Question/m-p/24806#M95445 <HTML><HEAD></HEAD><BODY><P>With the Compliance blade, does it provide the ability to report on&nbsp;unused objects?</P><P>Also can you determine what services are being used on a specific rule that has ANY applied as the service?</P></BODY></HTML> Thu, 17 May 2018 19:48:38 GMT Dave_Taylor1 2018-05-17T19:48:38Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Compliance-Blade-Question/m-p/24806#M95445 <HTML><HEAD></HEAD><BODY><P>With the Compliance blade, does it provide the ability to report on&nbsp;unused objects?</P><P>Also can you determine what services are being used on a specific rule that has ANY applied as the service?</P></BODY></HTML> Thu, 17 May 2018 19:48:38 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Compliance-Blade-Question/m-p/24806#M95445 Dave_Taylor1 2018-05-17T19:48:38Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Compliance-Blade-Question/m-p/24807#M95446 <HTML><HEAD></HEAD><BODY><P>I don't believe you need Compliance Blade for either of these tasks.</P><P>You can get a list of unused objects here (though this generates a script to delete them):&nbsp;<A href="https://community.checkpoint.com/docs/DOC-2730">Delete Unused Hosts, Networks, and Groups</A>&nbsp;</P><P>You can see what services are used for a given rule in SmartLog:</P><P><IMG class="image-1 jive-image" src="https://community.checkpoint.com/legacyfs/online/checkpoint/65647_pastedImage_3.png" /></P></BODY></HTML> Thu, 17 May 2018 23:27:03 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Compliance-Blade-Question/m-p/24807#M95446 PhoneBoy 2018-05-17T23:27:03Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Compliance-Blade-Question/m-p/24808#M95447 <HTML><HEAD></HEAD><BODY><P>Compliance Blade alerts you on services with Any.</P><P></P><P>It does not currently alert you on unused objects. It is planned for our next releases. For now, you can use the "show unused-objects" Management API command -&nbsp;&nbsp;<A class="link-titled" href="https://sc1.checkpoint.com/documents/latest/APIs/index.html#cli/show-unused-objects~v1.1%20" title="https://sc1.checkpoint.com/documents/latest/APIs/index.html#cli/show-unused-objects~v1.1%20">Check Point - Management API reference</A>&nbsp;</P></BODY></HTML> Tue, 22 May 2018 19:35:11 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Compliance-Blade-Question/m-p/24808#M95447 Tomer_Sole 2018-05-22T19:35:11Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Compliance-Blade-Question/m-p/24809#M95448 <HTML><HEAD></HEAD><BODY><P>This is good stuff! WE were hoping the compliance blade provides some of the things the more expensive auditing tools like Firemon, Tuffin&nbsp; or Algosec provide.</P></BODY></HTML> Fri, 25 May 2018 13:31:56 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Compliance-Blade-Question/m-p/24809#M95448 Dave_Taylor1 2018-05-25T13:31:56Z