This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
ED
Advisor
‎2018-05-22 05:08 AM
Jump to solution

Duplicate objects after EA R80

Hi,

After being part of EA R80 I have now a weird occurence of duplicate objects where one of them ends with an underscore.

Here is an example for https:

Another example:

So when installing policy you get "Succeeded with warnings" where you get a message for every duplicate object like this:

It would be nice to get rid of the names with underscore even though they are the one most used. Anyone else that have this same behaviour?

1 Solution

Accepted Solutions
Tomer_Sole
Mentor
Mentor
‎2018-05-22 06:24 AM
Jump to solution

One of the changes with the R80 Management Platform was to avoid customers from modifying the default objects created by Check Point. R80 Security Management (and later versions) protect this by placing these objects in a database segment which is read-only by all users (including super-users). 

In case a user has modified some of the default objects that were created by Check Point, the upgrade mechanism renames that modified object by adding an underscore. And the result is that the user will find two objects with similar properties - one is read-only, and one has an underscore and can be modified by the user.

The most noticeable example has been the services which were created by Check Point. Any modification in the advanced settings, comments etc. is identified during the upgrade to R80 or R80.10 and causes the duplication.

Hope this helps.

View solution in original post

6 Replies
G_W_Albrecht
Legend Legend
Legend
‎2018-05-22 06:05 AM
Jump to solution

EA (you are currently testing R80.20 ?) is for testing only, so you better revert to the last GA version.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2018-05-22 06:07 AM
Jump to solution

See sk115995 After upgrade from R77.30 to R80, almost all services duplicated with underscore suffix (ht...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Tomer_Sole
Mentor
Mentor
‎2018-05-22 06:24 AM
In response to G_W_Albrecht
Jump to solution

this SK deals with "what if I attempt to remove my underscore objects and they're still not removed successfully". I will edit the title of that SK.

0 Kudos
Tomer_Sole
Mentor
Mentor
‎2018-05-22 06:24 AM
Jump to solution

One of the changes with the R80 Management Platform was to avoid customers from modifying the default objects created by Check Point. R80 Security Management (and later versions) protect this by placing these objects in a database segment which is read-only by all users (including super-users). 

In case a user has modified some of the default objects that were created by Check Point, the upgrade mechanism renames that modified object by adding an underscore. And the result is that the user will find two objects with similar properties - one is read-only, and one has an underscore and can be modified by the user.

The most noticeable example has been the services which were created by Check Point. Any modification in the advanced settings, comments etc. is identified during the upgrade to R80 or R80.10 and causes the duplication.

Hope this helps.

ED
Advisor
‎2018-05-22 06:51 AM
In response to Tomer_Sole
Jump to solution

That makes sense but for me it looks like every default object have now a duplicate with underscore, making me doubt that a user has modified all these objects. 

0 Kudos
Tomer_Sole
Mentor
Mentor
‎2018-05-22 07:13 AM
In response to ED
Jump to solution

If you can't find out why a particular object was cloned and it looks identical to the original Check Point object, please open a support ticket with the example. You can use the show-service-tcp API to export these 2 particular objects (Check Point - Management API reference ).

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events