Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Tieoule
Participant

HOW TO RESET FULL ENCRYPTION WITHOUT SMARTENDPOINT ???

Jump to solution

Good morning all,
I am facing a real problem with one of our clients. This could end all market contracts around checkpoint solutions. So I know that with the community we can jointly find a solution. 

Indeed, I cannot access the endpoint management server which is installed as an open server at the client.  I have this error that appears when I type the command cpwd_admin list: "cpwd_admin: Failed to submit request to cpWatchdog". I do not have a snapshot or a backup of the server.

How to bypass the full encryption reset without going through the console in this situation?

0 Kudos
1 Solution

Accepted Solutions
_Val_
Admin
Admin

Did you, or did you not manage to extract migration files from the faulty server?

View solution in original post

10 Replies
_Val_
Admin
Admin

The only sensible way is to go through support process. If you feel that you are not getting timely assistance, you can escalate.
Also, it is the best practice to run periodical backups of critical infrastructure. 

Since you do not mention exact versions of your MGMT server and clients in use, it is hard to advise. Did you try to get management export from the machine and install a new server, with DM migrated to it?

Also, why do you need to reset encryption at this point?

0 Kudos
Tieoule
Participant

I fully understand your point.
Indeed, at this stage we need the full encryption reset because there is a user who is blocked. The client works in the banking sector.

Regarding the backup point, initially we were in PoC mode and the server was not suitable for local backup, and backup policies should be defined when we go to production.

The mgmt server version (installed on a VM in a VMware environment) is R80.20 and the endpoints are at version E84.0. and we have installed a new physical server in open server version R80.40, it is to this new server that we want to migrate

Do you have a solution ? Otherwise it's a disaster

0 Kudos
_Val_
Admin
Admin

Did you, or did you not manage to extract migration files from the faulty server?

View solution in original post

Tieoule
Participant

This is what we wanted to do. And we discovered this problem. Suddenly we said to ourselves that it was imperative to resolve this problem before trying to migrate.

0 Kudos
_Val_
Admin
Admin

Got it.

The best course of action, considering the urgency, to call the support line and ask for urgent assistance, including remote access. Also, it is advisable to update the case with full details, explaining the task in hands and actual nature of your emergency and the situation.

I have also sent you a personal message, just in case. Looking forward to hear your situation is resolved.

0 Kudos
Tieoule
Participant

Thanks Sir,

I will contact in case of need

0 Kudos
the_rock
Advisor

Ok, silly question, but is problem the same if you do cpstop start or reboot? When did this occur? Sorry, Im way more firewall than endpoint guy, just trying my best to help you knowing the urgency of situation.

 

Andy

0 Kudos
Tieoule
Participant

We use migrate export and migrate import by using a intermediate server. Because the old one got a lot of problem. This methode solve the problem. I advice every body here who will be face to this kind of problem to contact the support team, because there are many things to do on the system kernel file. Like analyzing registry files.

_Val_
Admin
Admin

I am grad the issue is resolved. 

Tieoule
Participant

Yes, this was partly with the EMEA TAC help.