Configuring SmartPortal / Management Portal to work in a Multi-Domain Security Management / Provider-1 environment

Support Center > Search Results > SecureKnowledge Details

Technical Level

Solution ID	sk31333
Technical Level
Product	Management Portal, Multi-Domain Management
Version	NGX R60, NGX R61, NGX R62, NGX R65, R70, R71, R75, R76, R77
Platform / Model	Intel/PC, Smart-1
Date Created	17-Nov-2005
Last Modified	29-Apr-2016

Solution

By default, SmartPortal / Management Portal can not be used if installed on a Provider-1 / Multi-Domain Security Management MDS machine.

In order to configure SmartPortal / Management Portal to work in a Provider-1 / Multi-Domain Security Management environment, follow this procedure:

Install SmartPortal / Management Portal (just the SmartPortal / Management Portal !) on a "clean" machine. (In the management object's General Properties tab, select Management Portal checkbox.)
Use the SecurePlatform / Gaia Portal in order to set the interfaces and define the SIC password - do NOT use the 'cpconfig' command !!!.
Connect to Provider-1 / Multi-Domain Security Management MDS machine with Provider-1 MDG / SmartDomain Manager.
Go to 'Global Policies' - expand the relevant Global Policy - expand the relevant Customer / Domain - right-click on the relevant CMA / Domain Management Server - click on 'Launch SmartDashboard'.
Go to 'Manage' menu - click on 'Network Objects' - click on 'New...' button - select 'Check Point' - select 'Host...'. This object will represent the SmartPortal / Management Portal machine.
Configure the object's properties. Make sure to check only the box for 'SmartPortal' / 'Management Portal' in the products section.
Establish SIC with the SmartPortal / Management Portal machine.
Configure the following global explicit rule:

SOURCE DESTINATION SERVICE ACTION

SmartPortal / Management Portal object SmartPortal / Management Portal object Any Accept
Save the changes: go to 'File' menu - click on 'Save'.
Close the SmartDashboard.
Go to 'Global Policies' - right-click on the relevant Global Policy - click on 'Reassign/Install Global Policy ...' - select the relevant CMA(s) / Domain(s).
Connect to SmartPortal / Management Portal at https://Portal_IP_Address:4433 - you should now be able to access the desired MDS / CMA / Domain.

Note: If you have one MDS and one MLM server, and you have a Management Portal license on your MDS server, then you do not need a separate license on your dedicated Management Portal server.

This solution is about products that are no longer supported and it will not be updated

Give us Feedback

Please rate this document

[1=Worst,5=Best]

Comment
	Submitting rating