This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Nick_Doropoulos
Advisor
‎2019-09-26 03:39 AM

Information on the psql tool for Endpoint Security Management server

During a remote session today I watched a Check Point engineer using the following command while investigating a potential database corruption on the customer's Endpoint Security Management Server:

psql -p 18272 uepm

The prompt then changed to "uepm=>" at which point SQL queries could be run.

I really can't find any information on Check Point's documentation though about the above tool/functionality so I was wondering if somebody could point me towards something. If there is none, would I be right to assume that the tool in question is Red Hat-based?

Thanks.

 

4 Replies
Nick_Doropoulos
Advisor
‎2019-09-26 03:42 AM

Sorry, this should have been posted inside the Endpoint Products section...

0 Kudos
PhoneBoy
Admin
Admin
‎2019-09-28 03:48 PM

Sometimes, we will need to directly manipulate the underlying databases as part of troubleshooting, or even fixing an issue.
In general, you shouldn't be doing this without direct guidance from Check Point TAC/R&D.
0 Kudos
Nick_Doropoulos
Advisor
‎2019-09-29 03:19 AM
In response to PhoneBoy

I can fully appreciate that point but it would be nice if Check Point could release some documentation on the subject so we can experiment on a testing environment.

PhoneBoy
Admin
Admin
‎2019-09-29 09:36 PM
In response to Nick_Doropoulos

A quick perusal of SecureKnowledge pulls up several articles when you search on psql.
I assume it's a standard PostgreSQL binary and would respond appropriately to well-formed queries.
In addition to being used for Endpoint, it's also used for SmartEvent, though I'm pretty sure different instances are used.
Regardless, we do not support people manipulating the databases directly in this manner.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top