This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
chethan_m
Collaborator
4 weeks ago
Jump to solution

Smart-1 Cloud Management to On-Prem Security Management Server Migration

Hi,

 

Are there any SK articles or official documentation related to the migration of Check Point Smart-1 Cloud Management to an On-Premises SMS — either on a hardware appliance or virtual machine?

 

So far, I’ve only come across this community post: Migration Smart-1 to On-Premise | Management Serve... - Check Point CheckMates , but it addresses a slightly different query.

 

https://support.checkpoint.com/results/sk/sk179698 - is removed.

 

Regards,

Chethan

 

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
4 weeks ago
Jump to solution

sk179698 is an internal SK.
A TAC case is required to get the relevant export output.

Optionally, or in cases where you might need to import the configuration to a lower version (R81.20, for instance, whereas Smart-1 Cloud is currently on R82), you can use this: https://github.com/CheckPointSW/ExportImportPolicyPackage 
This will require some manual steps afterwords as not all object types are available via API.
However, it also doesn't require a TAC case.

View solution in original post

11 Replies
G_W_Albrecht
MVP Silver
MVP Silver
4 weeks ago
Jump to solution

I would ask CP TAC for help here !

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
PhoneBoy
Admin
Admin
4 weeks ago
Jump to solution

sk179698 is an internal SK.
A TAC case is required to get the relevant export output.

Optionally, or in cases where you might need to import the configuration to a lower version (R81.20, for instance, whereas Smart-1 Cloud is currently on R82), you can use this: https://github.com/CheckPointSW/ExportImportPolicyPackage 
This will require some manual steps afterwords as not all object types are available via API.
However, it also doesn't require a TAC case.

the_rock
MVP Gold
MVP Gold
4 weeks ago
Jump to solution

Just my personal opinion, but if I were you, I would NOT do that and here is why. First off, literally everything these days is moving to the cloud and 2nd, which to me, is such an important point, think about this situation.

Lets say someone is logged into smart console remotely making a change and actual server is 500 miles (or for us measuring in kilometres, 800 kms give or take) and something goes down) and no one can access anything, and only way to get things back to normal is to have console into the management server and revert the changes...you think anyone would feel like driving 8 hours for that? I dont think so : - )

With S1C, thats NEVER an issue, because its accessible from any computer that has Internet access and reverting change is super simple.

Anyway, just something to think about...at least thats one thing I ALWAYS say to people when discussing this and they totally get it. Yes, there is no ssh access to it, but truth be told, you need it once a year, even if that and when you do, you just ask TAC to log in and do whats needed.

Andy

chethan_m
Collaborator
3 weeks ago
In response to the_rock
Jump to solution

Totally understand your point — but this request is based on a specific customer requirement. We’ve flagged the concern for future discussions.

0 Kudos
the_rock
MVP Gold
MVP Gold
3 weeks ago
In response to chethan_m
Jump to solution

What is the request, if you dont mind me asking? Obviously, you dont have to say, Im just curious.

Andy

0 Kudos
genisis__
MVP Silver
MVP Silver
3 weeks ago
In response to the_rock
Jump to solution

There is a major design flaw in Smart-1 Cloud.  You cannot have more then one person login to Smart-1 Cloud using traditional SmartConsole from the the same src IP ie. a terminal server.    This in my option is extremely counter productive.  I would hope that Checkpoint resolves this in R82.10.

0 Kudos
the_rock
MVP Gold
MVP Gold
3 weeks ago
In response to genisis__
Jump to solution

Personally, to me anyway, thats a minor thing. But, thats just me : - )

I still stand by the argument I brought up.

Andy

0 Kudos
genisis__
MVP Silver
MVP Silver
3 weeks ago
In response to the_rock
Jump to solution

I agree; with everything weighed up there are more reasons to adopt Checkpoint SaaS solution, but in the short term there are limitations that stop/slow down adoption, which Checkpoint need to resolve.

0 Kudos
the_rock
MVP Gold
MVP Gold
3 weeks ago
In response to genisis__
Jump to solution

Personally, I still find those things minor, but again, thats just me. Im sure those will be fixed.

Andy

0 Kudos
PhoneBoy
Admin
Admin
3 weeks ago
In response to genisis__
Jump to solution

I suspect this will be addressed by way of moving more functionality to Web SmartConsole so the traditional SmartConsole isn't needed.

the_rock
MVP Gold
MVP Gold
3 weeks ago
In response to PhoneBoy
Jump to solution

excellent

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events