- CheckMates
- :
- Products
- :
- CloudMates Products
- :
- CNAPP
- :
- TechTalk - Deep Dive Webinar - Cloud Native Securi...
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Are you a member of CheckMates?
×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
TechTalk - Deep Dive Webinar - Cloud Native Security - Part One
This recording is part one out of three deep-dive webinars that would walk you through working with the Check Point Native Cloud Security platform (CloudGuard).
Register to the Infinity Portal: https://portal.checkpoint.com
Q&A:
| 1 | Does the product support on-prem Cloud/Private Cloud as well? | Not at the moment but it will be possible in the future |
| 2 | Does Dome9 is now FULLY integrated into the Infinity portal without any compromise? | Yes |
| 3 | Is there any plan to use Terraform in order to install from the CP portal without manual work with CSPs? | Yes |
| 4 | Are you working on auto boarding / continuous monitoring of AWS and Azure accounts? I see you guys have this for GCP but we haven't seen for AWS nor Azure |
We plan to have one-click onboarding and afterward to have org level onboarding with the discovery |
| 5 | In AWS can you see NACL or only security groups configuration on Clarity? | At the moment only Security groups but we plan to add NACL |
| 6 | Is it needed a read/write onboarding to create an access lease? or is the read anly onboarding enough? | We need to create a rule on AWS so the write permission is a must |
| 7 | Where do I get a chrome extension? | On Chrome extensions just search for Dome9 https://chrome.google.com/webstore/detail/dome9-extension/ehgnfknpngcoibdjgplfechkifalhifk |
| 8 | How would a company's VPN or DirectConnect to a data center show in Clarity? | We support direct connect you will see the direct connect on the VPC level pointing to the data center IP |
| 9 | Are Cloudguard Native Security and dom9 the same product or are they two different products? | Same product different name |
| 10 | Does dome9 replace the existing SMS (on-premise) to publish the security rules or it will complete it | Those are two separate products. There is management as a service as part of the infinity portal (portal.checkpoint.com) , you will find it under the name INFINITY --> Policy |
| 11 | I have Cloudguard GWs in Azure and OCI is it possible to use the dom9 demo to explore the different features? |
You can freely try the product, just register at https://portal.checkpoint.com Oracle Cloud Is currently not supported |
| 12 | Are the same features/functions available for both AWS and Azure | Not all the features are supported for both platforms |
| 13 | What licensing costs are involved? | Please approach your Account manager or your Sales Engineer |
| 14 | Are you able to generate a single cloud posture management report which covers all onboarded accounts? | Yes |
| 15 | Does CloudGuard Native able to identify which Azure Storage Accounts are exposed publicly at the container level? | We can detect many aspects regarding container level. We need to know what is the actual use case but if currently not supported it will be soon |
| 16 | Can CloudGuard Native track the compliance trends of all onboarded accounts in a single graph? Be it on a dashboard widget or in a report? | Yes |
| 17 | Are there pre-configured security rules for environments you sync and if so how often are these policies updated to identify current threats? |
We have predefined rules, we update them constantly in order to be up to date as soon as possible |
| 18 | Does virtual patching support? | No |
| 19 | If I have port 22 open from the outside to the asset do I address it on CloudGuard=Perimeter firewall in my Cloud environment or I can change the configuration from CSPM? | CSPM , the PM stands for posture management, it’s for managing and tracks the cloud posture. To manage incoming and outgoing connections, you can choose between managing it on the Firewall level via the Smart Management or via the CloguGuard Native security tools on the security group level. |
| 20 | 39 How CSPM aka Dome9 work in conjunction with the perimeter firewall I have in my Cloud environment is there any overlap on in? "There will be in the future | please provide specific use case if possible." |
| 21 | Where can i found the anti-tampering capability? |
https://sc1.checkpoint.com/documents/CloudGuard_Dome9/Default.htm?cshid=121 |
| 22 | Can we see Azure Audit logs? What changes are happening within the Azure account? | using log.ic account activity for Azure" |
| 23 | Can you show how you upload the Kubernetes cluster on CG native? and can you inspect them via posture management? | https://community.checkpoint.com/t5/Container-Security/Howto-onboard-k8s-cluster-into-the-CloudGuard... |
| 24 | If we can not see NACLs in aws that is the meaning we are not really seeing the whole vpc networking picture? | "You can see the NACL, subnets, route tables, and many more |
0 Replies
TechTalk - Deep Dive Webinar - Cloud Native Security - Part One
This recording is part one out of three deep-dive webinars that would walk you through working with the Check Point Native Cloud Security platform (CloudGuard).
Register to the Infinity Portal: https://portal.checkpoint.com
Q&A:
| 1 | Does the product support on-prem Cloud/Private Cloud as well? | Not at the moment but it will be possible in the future |
| 2 | Does Dome9 is now FULLY integrated into the Infinity portal without any compromise? | Yes |
| 3 | Is there any plan to use Terraform in order to install from the CP portal without manual work with CSPs? | Yes |
| 4 | Are you working on auto boarding / continuous monitoring of AWS and Azure accounts? I see you guys have this for GCP but we haven't seen for AWS nor Azure |
We plan to have one-click onboarding and afterward to have org level onboarding with the discovery |
| 5 | In AWS can you see NACL or only security groups configuration on Clarity? | At the moment only Security groups but we plan to add NACL |
| 6 | Is it needed a read/write onboarding to create an acc |
