AnsweredAssumed Answered

Import existing client certificates and map to CheckPoint Management Server Admin Account

Question asked by Oscar Medina on Jul 23, 2018
Latest reply on Jul 24, 2018 by Robert Decker

Hi Y'all,

 

I am trying to leverage any Azure capabilities that may help streamline the setup of administrator accounts for the management servers we have (currently 2 in two separate Azure Locations).

 

As of now, I've setup VPN (P2S) to our hub vNET which allows access to the Azure resources including those Management Servers.  My VPN setup simply uses Certificates, so my root CA is stored in Azure Key Vault.  I plan to distribute a different client certificate for each user who will administer the CheckPoint Management servers. 

 

However, I see that CheckPoint SmartConsole (which I assume uses the API) allows for creating an account and includes the ability to create a certificate for said user.  My question is; can I import an existing user certificate created on KeyVault and map it to a given administrator account via the CLI, if so, what would that look like?  I checked the API and only saw the ability to create an administrator account using a password...

 

Any guidance is super appreciated,
@SharePointOscar

Outcomes