This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
ajsingh
Explorer
a week ago

AWS Gateway Load Balancer Auto Scaling Group upgrade user data script issue

Hi Everyone,

I am running into issue where I am trying to upgrade my AWS scaleset from R80.40 to R81.20. 

I am following https://sc1.checkpoint.com/documents/IaaS/WebAdminGuides/EN/CP_CloudGuard_Network_for_AWS_Gateway_Lo... but having issue where editing User data file.

On page 92 it says to update user data file and i just dont know the correct syntax of the file. 

I tried putting plain SIC password and base64 encoded but always get error  : 

2024-11-12 14:59:53,688 CME_SERVICE  ERROR Failed to initialize SIC with gateway instance AWS_Internal (sic-state= uninitialized). Make sure the One-Time Password configured in CME is correct.

 

I did check sk180606 - CloudGuard Network for AWS provisioning/deployment fails because of incompatibility with ... but still not able to find right way to enter parameter value's. 

 

I have the sic password with me from my old user data file of R80.40 template but seems like am not using or entering it in a right way. 

 

Can anyone please help me with some examples or guide me ? 

Much apprecited.

 

0 Kudos
5 Replies
Nir_Shamir
Employee Employee
Employee
a week ago

Hi,

it should look like this :

sic="$(echo MXEydzNlNHI1dDZ5 | base64 -d)"

If I remember correctly, you need to base64 the hashed password.

0 Kudos
ajsingh
Explorer
a week ago
In response to Nir_Shamir

Hi,

I tried the same syntax and followed the sk180606 but no success. Still same error complaining about one time password in CME. 

I am using template version2 0230117 . I feel like this is not a password issue as same password is  working with R80.40 version but not  with R81.20 version

0 Kudos
noamcoh
Employee
Employee
Sunday

Hi ajsingh,

You will need to change the SIC parameter and enter it in a base64 format.

Please follow these steps:

  1. Go to your ASG
  2. Find your lunch template
  3. Go to your lunch template
  4. Under lunch template details, click on Actions and then Modify template (create new version)
  5. Expand "Advanced Details"
  6. Go down to User data
  7. You will see something like this:
    noamcoh_0-1731858806752.jpeg

     

  8. Go to base64 encoder
  9. Get the base64 value of your password
  10. Put it in the sic variable like this:
    sic="$(echo [BASE64_VALUE])"
    Example:
    sic="$(echo cGFzc3dvcmQ=)"
  11. Click create template version
  12. Scale out a new instance using the new lunch template version
0 Kudos
ajsingh
Explorer
Monday
In response to noamcoh

Hi, I tried that and got this error on console : 


Your cloud-init configuration is corrupt or contains error:
Provided YAML file contains one or more errors:
Error in function _compare_to_schema:
Provided YAML configuration is invalid:
1:
Error: None is not of type 'object'

 

I copied the script exactly from sk180606 - CloudGuard Network for AWS provisioning/deployment fails because of incompatibility with ... 

0 Kudos
almogar
Employee
Employee
Tuesday
In response to ajsingh

Double check the syntax in the template file:
sic="$(echo [BASE64_ENCODED_PASSWORD] | base64 -d)"
Ensure there are no trailing spaces or line breaks after pasting the encoded value.

Do you add "#cloud-config" at the top of the cloud-init file? 

 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
UPCOMING CLOUDMATES EVENTS
    All CloudMates Events