This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have one, create one now for free!
pawelnabozny
Participant
‎2021-12-06 02:10 AM

Migration SMS with endpoint management EPM

Hello,

I've got a problem with the migration of the SMS server. Right now I have a production SMS ( with EPM endpoint management) and the new one where I want to set migration. Both of them are using two separate interfaces one for mgmt second for emp.
Both servers are with the same software version and JHF.

After ./migrate import, I can see all the same configurations as in the production environment.

Unfortunately, the connections with end-points are down. After that, I try to use this procedure (reconnect tool) for every hosts in my company.

 

I. Create Reconnect utility Reconnect clients:
1. Connect to the new server using the Endpoint Management console and export any profile.
2. Get the "config.dat" file from the server path
cd /$FWDIR/conf/SMC_Files/uepm/DA/config.datc.
3. Run cmd.exe from the machine where the SmartConsole is installed.
4. cd C:\Program Files (x86)\CheckPoint\SmartConsole\E80.30\PROGRAM\util\RepWorkFolder\INVOKE
5. Run the command: maketool.bat <path to config.dat created in step #1> <"client uninstall password">
6. Reconnect.exe will be created in the current directory.

II. Reconnect Clients:
1. Run Reconnect.exe on the client computer, it will register to the new server.

But in a situation where I have around 500 hosts and more people are working remotely, it is very problematic.

Do you have any idea how can I do it more automatically?
I will be very grateful for help or any suggestions.
All the best,

Preview file
25 KB
0 Kudos
5 Replies
PhoneBoy
Admin
Admin
‎2021-12-12 04:09 PM

Is the same IP used pre and post migration?
If so...I wonder why you're needing to run the reconnect utility at all.

0 Kudos
pawelnabozny
Participant
‎2021-12-12 11:51 PM
In response to PhoneBoy

Yes both interfaces (MGMT and EPM) have the same IP addresses as current production SMS.Of course, Before this new one is turning on I switch off the production.

0 Kudos
PhoneBoy
Admin
Admin
‎2021-12-13 08:50 AM
In response to pawelnabozny

I recommend getting the TAC involved then.
Sounds like something else may be at play here.

0 Kudos
pawelnabozny
Participant
‎2021-12-14 05:37 AM
In response to PhoneBoy

Actually, I get this instruction from TAC support.

But I wonder if someone had the same problem with migration EPM and after those connections between SMS and endpoint clients

0 Kudos
pawelnabozny
Participant
‎2022-01-11 11:41 PM

Hello,
Copying a file named: "server-list.xml" from production SMS solved the issue. 🙂
All the Best,