This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Veeraselvam_man
Contributor
‎2021-05-20 07:01 AM
Jump to solution

How to get Target details of Policies and Layers?

Hi all,

In the Checkpoint management server, Under the Manage Policies option, we have the option to provide policy target of selected policies and layers. In this target field, we can provide any gateway or cluster names.

policies.png

 

Is there any way to get install target info with Policies name details using Management API? I tried below API methods:

 

  • https://managementServerIP/web_api/show-access-layers
  • https://managementServerIP/web_api/show-access-layer

Both API responses are not contained Policy Target information.

 


Regards,

Veera

 

 

 

0 Kudos
2 Solutions

Accepted Solutions
PhoneBoy
Admin
Admin
‎2021-05-20 07:27 AM
Jump to solution

What that screen shows you are actually the policy packages, which contain one or more layers.
Layers themselves do not have such a target, thus you won’t see it by that API.
It’s show-package (and friends).

Also, when you’re installing a policy to a gateway, it’s the policy package you install, not the layer.

View solution in original post

0 Kudos
Bob_Zimmerman
Authority
Authority
‎2021-05-20 07:29 AM
Jump to solution

Installation targets are a property of the policy package, not the access layer:

[Expert@LabSC]# mgmt_cli -r true --format json show packages details-level full | jq '.packages[]|{name:.name,targets:."installation-targets"}'
{
  "name": "Policy_the_Second",
  "targets": "all"
}
{
  "name": "Standard",
  "targets": "all"
}

I haven't gotten around to exploring all the possible values for the field. My bet is it's a string with a few acceptable values or a list with names of acceptable targets.

View solution in original post

0 Kudos
4 Replies
PhoneBoy
Admin
Admin
‎2021-05-20 07:27 AM
Jump to solution

What that screen shows you are actually the policy packages, which contain one or more layers.
Layers themselves do not have such a target, thus you won’t see it by that API.
It’s show-package (and friends).

Also, when you’re installing a policy to a gateway, it’s the policy package you install, not the layer.

0 Kudos
Bob_Zimmerman
Authority
Authority
‎2021-05-20 07:29 AM
Jump to solution

Installation targets are a property of the policy package, not the access layer:

[Expert@LabSC]# mgmt_cli -r true --format json show packages details-level full | jq '.packages[]|{name:.name,targets:."installation-targets"}'
{
  "name": "Policy_the_Second",
  "targets": "all"
}
{
  "name": "Standard",
  "targets": "all"
}

I haven't gotten around to exploring all the possible values for the field. My bet is it's a string with a few acceptable values or a list with names of acceptable targets.

0 Kudos
Veeraselvam_man
Contributor
‎2021-05-20 08:02 AM
In response to Bob_Zimmerman
Jump to solution

Thank you for your timely help @Bob_Zimmerman  🙏

Regards,

Veera

0 Kudos
Veeraselvam_man
Contributor
‎2021-05-20 08:00 AM
Jump to solution

Thank you for your timely help @PhoneBoy

 

Regards,

Veera

 

 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top