PSQL - Show recent policy installation details - Check Point CheckMates

What's New in R82.10?
10 December @ 5pm CET / 11am ET

Register Here

Improve Your Security Posture with
Threat Prevention and Policy Insights

Watch Here

Overlap in Security Validation
Help us to understand your needs better

Take the Survey

CheckMates Go:
Maestro Madness

Listen Now

Mark as Verified by CP

Browse All

🏆 PSQL wizardry!
👉 Directly queries the management database

PSQL query to show the 20 most recent policy installations on a Check Point Security Management (SmartCenter).
In expert mode run:


    psql_client cpm postgres -c "SELECT d.name AS domain, COALESCE(ap.name, tp.name, '—') AS policy_package, COALESCE(gw.name, '—') AS target, ws.username, ws.name AS session_name, ws.applicationname AS client, STRING_AGG(DISTINCT CASE WHEN ap.name IS NOT NULL THEN 'Access Cont

...;

TO ACCESS CHECKMATES TOOLBOX

REGISTER SIGN IN

it's simple and free

Disclaimer: Check Point does not provide maintenance services or technical or customer support for third party content provided on this Site, including in CheckMates Toolbox. See also our Third Party Software Disclaimer.

Mark as Verified by CP

1 Reply

Awesome!

[Expert@CP-MANAGEMENT:0]#
TRING_AGG(DISTINCT CASE WHEN ap.name IS NOT NULL THEN 'Access Control' WHEN tp.name IS NOT NULL THEN 'Threat Prevention' ELSE 'Unclassified' END, ', ') AS policy_types, ipr.statusdescription AS install_status, TO_CHAR(ipr.creationtime, 'YYYY-MM-DD HH24:MI:SS') AS install_time FROM installpolicyresponse ipr LEFT JOIN accesspolicy_data ap ON ipr.policyid = ap.objid LEFT JOIN threatpolicy_data tp ON ipr.policyid = tp.objid LEFT JOIN worksession ws ON ipr.worksession = ws.objid LEFT JOIN domainbase_data d ON ipr.domainid = d.objid LEFT JOIN dleobjectderef_data gw ON ipr.gatewayid = gw.objid AND gw.cpmitable = 'network_objects' AND gw.cpmitype = 'gateway' GROUP BY d.name, ap.name, tp.name, gw.name, ws.username, ws.name, ws.applicationname, ipr.statusdescription, ipr.creationtime ORDER BY ipr.creationtime DESC LIMIT 20;"
domain | policy_package | target | username | session_name | client | policy_types |
install_status | install_time
----------+----------------+--------+--------------+--------------------------+--------------+-------------------+-----
--------------------+---------------------
SMC User | — | — | system_admin | Global Domain Assignment | | Unclassified | Succeeded
| 2025-11-02 10:39:01
SMC User | — | — | system_admin | Global Domain Assignment | | Unclassified | Succeeded
| 2025-11-02 10:39:01
SMC User | — | — | system_admin | Global Domain Assignment | | Unclassified | Succeeded
| 2025-11-02 10:39:01
SMC User | LAB-POLICY | CP-GW | system_admin | Global Domain Assignment | | Threat Prevention | Succ
eeded | 2025-11-02 10:39:01
SMC User | LAB-POLICY | CP-GW | system_admin | Global Domain Assignment | | Access Control | Succ
eeded with Warnings | 2025-11-02 10:39:01
SMC User | LAB-POLICY | — | system_admin | Global Domain Assignment | | Access Control | Succeed
ed | 2025-11-02 10:39:01
SMC User | LAB-POLICY | — | system_admin | Global Domain Assignment | | Access Control | Succeed
ed | 2025-11-02 10:39:01
SMC User | LAB-POLICY | — | system_admin | Global Domain Assignment | | Access Control | Succeed
ed | 2025-11-02 10:39:01
SMC User | LAB-POLICY | — | system_admin | Global Domain Assignment | | Access Control | Succeed
ed | 2025-10-28 10:15:01
SMC User | — | — | system_admin | Global Domain Assignment | | Unclassified | Succeeded
| 2025-10-28 10:15:00
SMC User | — | — | system_admin | Global Domain Assignment | | Unclassified | Succeeded
| 2025-10-28 10:15:00
SMC User | — | — | system_admin | Global Domain Assignment | | Unclassified | Succeeded
| 2025-10-28 10:15:00
SMC User | LAB-POLICY | CP-GW | system_admin | Global Domain Assignment | | Access Control | Succ
eeded with Warnings | 2025-10-28 10:15:00
SMC User | LAB-POLICY | — | system_admin | Global Domain Assignment | | Access Control | Succeed
ed | 2025-10-28 10:15:00
SMC User | LAB-POLICY | — | system_admin | Global Domain Assignment | | Access Control | Succeed
ed | 2025-10-28 10:15:00
SMC User | LAB-POLICY | CP-GW | system_admin | Global Domain Assignment | | Threat Prevention | Succ
eeded | 2025-10-28 10:15:00
SMC User | — | — | admin | admin@27-Oct-2025 | SmartConsole | Unclassified | Succeeded
| 2025-10-27 12:02:13
SMC User | — | — | admin | admin@27-Oct-2025 | SmartConsole | Unclassified | Succeeded
| 2025-10-27 12:02:13
SMC User | — | — | admin | admin@27-Oct-2025 | SmartConsole | Unclassified | Succeeded
| 2025-10-27 12:02:13
SMC User | LAB-POLICY | — | admin | admin@27-Oct-2025 | SmartConsole | Access Control | Succeed
ed | 2025-10-27 12:02:13
(20 rows)

[Expert@CP-MANAGEMENT:0]#

Best,
Andy

Awesome!

[Expert@CP-MANAGEMENT:0]#
TRING_AGG(DISTINCT CASE WHEN ap.name IS NOT NULL THEN 'Access Control' WHEN tp.name IS NOT NULL THEN 'Threat Prevention' ELSE 'Unclassified' END, ', ') AS policy_types, ipr.statusdescription AS install_status, TO_CHAR(ipr.creationtime, 'YYYY-MM-DD HH24:MI:SS') AS install_time FROM installpolicyresponse ipr LEFT JOIN accesspolicy_data ap ON ipr.policyid = ap.objid LEFT JOIN threatpolicy_data tp ON ipr.policyid = tp.objid LEFT JOIN worksession ws ON

...;

TO ACCESS CHECKMATES TOOLBOX

REGISTER SIGN IN

it's simple and free

Mark as Verified by CP