- Products
- Learn
- Local User Groups
- Partners
- More
CheckMates Fifth Birthday
Celebrate with Us!
days
hours
minutes
seconds
Join the CHECKMATES Everywhere Competition
Submit your picture to win!
Check Point Proactive support
Free trial available for 90 Days!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
The 2022 MITRE Engenuity ATT&CK®
Evaluations Results Are In!
Now Available: SmartAwareness Security Training
Training Built to Educate and Engage
MITRE ATT&CK
Inside Check Point products!
CheckFlix!
All Videos In One Space
Hi,
After being part of EA R80 I have now a weird occurence of duplicate objects where one of them ends with an underscore.
Here is an example for https:
Another example:
So when installing policy you get "Succeeded with warnings" where you get a message for every duplicate object like this:
It would be nice to get rid of the names with underscore even though they are the one most used. Anyone else that have this same behaviour?
One of the changes with the R80 Management Platform was to avoid customers from modifying the default objects created by Check Point. R80 Security Management (and later versions) protect this by placing these objects in a database segment which is read-only by all users (including super-users).
In case a user has modified some of the default objects that were created by Check Point, the upgrade mechanism renames that modified object by adding an underscore. And the result is that the user will find two objects with similar properties - one is read-only, and one has an underscore and can be modified by the user.
The most noticeable example has been the services which were created by Check Point. Any modification in the advanced settings, comments etc. is identified during the upgrade to R80 or R80.10 and causes the duplication.
Hope this helps.
EA (you are currently testing R80.20 ?) is for testing only, so you better revert to the last GA version.
this SK deals with "what if I attempt to remove my underscore objects and they're still not removed successfully". I will edit the title of that SK.
One of the changes with the R80 Management Platform was to avoid customers from modifying the default objects created by Check Point. R80 Security Management (and later versions) protect this by placing these objects in a database segment which is read-only by all users (including super-users).
In case a user has modified some of the default objects that were created by Check Point, the upgrade mechanism renames that modified object by adding an underscore. And the result is that the user will find two objects with similar properties - one is read-only, and one has an underscore and can be modified by the user.
The most noticeable example has been the services which were created by Check Point. Any modification in the advanced settings, comments etc. is identified during the upgrade to R80 or R80.10 and causes the duplication.
Hope this helps.
That makes sense but for me it looks like every default object have now a duplicate with underscore, making me doubt that a user has modified all these objects.
If you can't find out why a particular object was cloned and it looks identical to the original Check Point object, please open a support ticket with the example. You can use the show-service-tcp API to export these 2 particular objects (Check Point - Management API reference ).
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY