This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
sushantjoshi
Contributor
‎2024-06-20 07:17 AM
Jump to solution

Reset SIC Log Server

How can we reset SIC for CP Log Servers ? I have tried cpconfig and I simply cannot find the option as well as tried it using cli

 

Any idea ? 

0 Kudos
1 Solution

Accepted Solutions
sushantjoshi
Contributor
‎2024-06-26 07:01 PM
In response to PhoneBoy
Jump to solution

@PhoneBoy  Sorry for the trouble. 

 

I raised a case and all we did was a halt to the machine and started it and could see the cpconfig after that.

 

Thank You !

View solution in original post

11 Replies
796570686578
Collaborator
‎2024-06-20 07:22 AM
Jump to solution

Hmm, are you talking about the Smart Event Server? I just checked on a Smart Event Server R81.20 and there I have the option to change SIC in cpconfig. It's named "Secure Internal Communication".

Best regards

0 Kudos
sushantjoshi
Contributor
‎2024-06-20 07:44 AM
In response to 796570686578
Jump to solution

Nope , I am talking about a dedicate log server not an Smart Event

0 Kudos
PhoneBoy
Admin
Admin
‎2024-06-20 12:55 PM
Jump to solution

The command looks like it's cp_conf init sicpassword.
Whether it works from a log server or not is a different question
Reference: https://support.checkpoint.com/results/sk/sk86521

 

0 Kudos
sushantjoshi
Contributor
‎2024-06-20 07:56 PM
In response to PhoneBoy
Jump to solution

@PhoneBoy  I have tried that doesn't work sadly.

 

@the_rock  @PhoneBoy  any more ideas ? 

0 Kudos
emmap
Employee
Employee
‎2024-06-20 08:29 PM
In response to sushantjoshi
Jump to solution

I don't have access to one to check but I'm pretty sure that if you have built the server in the FTW as a log server then it should be an option in cpconfig. Are you sure the server was built as a log server and not a primary management server?

0 Kudos
the_rock
Legend
Legend
‎2024-06-21 01:10 AM
In response to sushantjoshi
Jump to solution

I see the point @emmap brought up, makes total sense.

0 Kudos
PhoneBoy
Admin
Admin
‎2024-06-21 08:39 AM
In response to sushantjoshi
Jump to solution

I suspect @emmap is correct that the system was not initially installed as a Log Server.
Can you provide what it says in $CPDIR/register/HKLM_registry.data for the lines LogServer and Management?

0 Kudos
sushantjoshi
Contributor
‎2024-06-22 10:22 PM
In response to PhoneBoy
Jump to solution

HKLM_registry.data is not present in both of my LogServer and Management Server.

This is in production and all of my VS were forwarding traffic to these log servers. 

There is one more active backup log server which doesn't have option to reset SIC as well and also does not have HKLM_registry.data file

0 Kudos
sushantjoshi
Contributor
‎2024-06-26 07:01 PM
In response to PhoneBoy
Jump to solution

@PhoneBoy  Sorry for the trouble. 

 

I raised a case and all we did was a halt to the machine and started it and could see the cpconfig after that.

 

Thank You !

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top