This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Ekta_Siwani1
Contributor
‎2017-11-12 11:16 PM
Jump to solution

"[Network] is not unique" error while trying to get rule from domain with global policy(provider1)

Hi,

I have a multi-domain server (Provider 1) with a domain (global policy assigned).

I tried to get rule using R80 API, it shows error "Requested object name [Network] is not unique."

To login I used following syntax:

{

"user" : "username",
"password" : "password",

"domain" : "domain name"

}

To get rule i used "show-access-rule" and syntax used is:

{
"name" : "Clean up",
"layer" : "Network"
}

This works fine with the domain without global policy assigned. What is the correct way to fetch this from a domain with global policy? The rule which I am trying to fetch is not a global rule.

When I tried fetching the list of layers I got two "Network" layer:

{
"access-layers": [
{
"uid": "4847c238-7891-446b-ba68-a540e67155be",
"name": "Network",
"type": "access-layer",
"domain": {
"uid": "e0d03ca1-01cc-43b4-a09f-0ef5eb1d9dc7",
"name": "domain name",
"domain-type": "domain"
}
},
{
"uid": "87ed1061-d5f9-4318-90d9-1be3badc4c76",
"name": "Network",
"type": "access-layer",
"domain": {
"uid": "1e294ce0-367a-11e3-aa6e-0800200c9a66",
"name": "Global",
"domain-type": "global domain"
}
},
{
"uid": "7c45f8a9-07c6-4ac8-9f48-c791b8ab3dad",
"name": "Policy1 Network",
"type": "access-layer",
"domain": {
"uid": "1e294ce0-367a-11e3-aa6e-0800200c9a66",
"name": "Global",
"domain-type": "global domain"
}
}
],
"from": 1,
"to": 3,
"total": 3
}

0 Kudos
1 Solution

Accepted Solutions
Robert_Decker
Advisor
‎2017-11-13 01:15 AM
Jump to solution

You have two policy layers named "Network" - one in a local domain and other in a global domain.

When you assign a glopal policy to a domain, the policy package now contains two layers with a same name - hence the ambiguity.

To overcome this name ambiguity, you have to use the UID of the layer in API commands.

View solution in original post

3 Replies
Robert_Decker
Advisor
‎2017-11-13 01:15 AM
Jump to solution

You have two policy layers named "Network" - one in a local domain and other in a global domain.

When you assign a glopal policy to a domain, the policy package now contains two layers with a same name - hence the ambiguity.

To overcome this name ambiguity, you have to use the UID of the layer in API commands.

Ekta_Siwani1
Contributor
‎2017-11-13 03:09 AM
In response to Robert_Decker
Jump to solution

Hi Robert,

Thanks for the reply.

Is this the only way (using UID) to tell API which layer we want to use.

0 Kudos
Robert_Decker
Advisor
‎2017-11-13 04:15 AM
In response to Ekta_Siwani1
Jump to solution

After the global policy assignment - yes.

You can extract the UID from the access-layers query, mentioned in your post above.

The domain name field in the above response is your reference to the correct layer.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top