Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Traian-Cojocari
Explorer

Ansible task failing

Hello! I am trying to add an rule to the checkpoint management server (in AWS) through Ansible.

If I use the module "cp_mgmt_access_rule" it gives me the error "Relevant hotfix is not installed on Check Point server. See sk114661 on Check Point Support Center." 

I already installed the latest update, how can I solve this problem? 

Manager Node Environment: Centos 8, Ansible 2.9.2, Python 3.6.8 (Not using 2.7.9+ because of EOL)

0 Kudos
9 Replies
PhoneBoy
Admin
Admin

What about the management version/jumbo hotfix level?
0 Kudos
Traian-Cojocari
Explorer

check-status.png

0 Kudos
PhoneBoy
Admin
Admin

Best to open a TAC case so they can investigate this.
0 Kudos
rdodia
Participant

Hi

 

Facing a similar issue.

 

Downloaded the appropriate hot-fix and still see error in running playbook :

TASK [Add threat rule in IDS] **************************************************
19:10:45
 
8
fatal: [checkpoint]: FAILED! => {"changed": false, "msg": "Relevant hotfix is not installed on Check Point server. See sk114661 on Check Point Support Center."}
 

Screenshot 2020-05-03 at 7.06.35 PM.png

Please help .

 

Thanks

Rachna Dodia

0 Kudos
PhoneBoy
Admin
Admin

Please open a TAC case so we can investigate.
0 Kudos
rdodia
Participant

Hi Sir,

I am also struggling with the similiar error faced by you:

"msg": "Relevant hotfix is not installed on Check Point server. See sk114661 on Check Point Support Center.",

 

Have you seen any fixes?

 

Thanks,

Rachna Dodia

rdodia@redhat.com

0 Kudos
IdentityUnknown
Participant

Hi Rachna,

 

please provide some further information.

Management

- fw ver

- cpinfo -y all

- api status

Ansible:

- ansible --version

 

I think the sk114661 explained it very well what you have to use on Check Point site.

0 Kudos
rdodia
Participant

Hi 

I am using Checkpoint Management server version -R80.30

Ansible version: 2.9.7

I am not sure how to find other details. I  went through sk114661 , but even there  I am pretty much stuck up with how to install the relevant hot-fix.

Can you please provide me your email id so that I can communicate with you directly .

Thanks,

Rachna.

 

0 Kudos
PhoneBoy
Admin
Admin

Go to CPUSE in the Gaia WebUI and download the most recent recommended Jumbo Hotfix offered.
0 Kudos