Support Center > Search Results > SecureKnowledge Details
How to configure mail alerts for policy installation Technical Level
Solution

Mail alerts for Security policy installation are configured through the SmartView Monitor.

Procedure

  1. In SmartConsole:

  2. In SmartView Monitor:

    1. To open the SmartView Monitor from the SmartConsole R80 and higher:

      1. From the left navigation panel, click Logs & Monitor.

      2. From the top, click [+] to open a new tab.

      3. In the bottom section, click Tunnel & User Monitor.

    2. Go to the File menu - go to the New sub-menu - click Gateways View.

    3. From the "Select available fields from" drop-down menu, select "Firewall".

    4. In the "Available fields" list, click "Security Policy" and while holding the CTRL key, click "Security Policy Installed".

    5. Click the "Add" button.

    6. Click OK.

    7. The new custom view named "Untitled" appears in the left tree in the Custom folder.
      Right-click this view - click Rename - assign a desired name.

    8. Right-click this new view and click Run.

    9. Set a threshold: in the Custom branch of the tree view on the left hand side, right-click the new Custom setting and select Run.

    10. In the list of all managed machines, right-click the relevant Security Gateway / Cluster object - click "Configure Thresholds".

      Example:

    11. In the Threshold Settings window, either click the "Edit Global Settings..." button, or select "Custom".

    12. In the "Enabled" column, select these:

      • "Firewall Policy"
      • "Firewall Policy install time"
      • "Firewall Policy name"
    13. In the "Action" column for these three thresholds, change from "alert" to "mail".

    14. Click on OK.

      Example:

    15. Go to the "Tools" menu - click "Start System Alert Daemon" (if the daemon is already started, then this option is grayed out and the "Stop" option is available).

  3. In SmartConsole:

    1. Install the Security Policy on the relevant Security Gateway / Cluster object.

    2. Install Database on the Security Management Server / Log Server.

  4. Important note for Multi-Domain systems:

    On Provider-1 / Multi-Domain Server, it is also necessary to manually enable the 'cpstat_monitor' in the context of the relevant CMA / Domain.

    1. Connect to the command line on the server.

    2. Log in to the Expert mode.

    3. Run the applicable commands:

      • To enable on-the-fly:

        [Expert@HostName]# mdsenv <Domain_Name>

        [Expert@HostName]# cpstat_monitor &

      • To enable permanently:

        [Expert@HostName]# mdsenv <Domain_Name>

        [Expert@HostName]# cpprod_util CPPROD_SetValue PROVIDER-1 RunCpstatMonitor  1 1 1

      • To disable permanently:

        [Expert@HostName]# mdsenv <Domain_Name>

        [Expert@HostName]# cpprod_util CPPROD_SetValue PROVIDER-1 RunCpstatMonitor 1 0 1

      Explanation:

      The 'cpstat_monitor' is executed for CMA / Domain only if the CMA's / Domain's registry file ($CPDIR/registry/HKLM_registry.data) contains a key ':RunCpstatMonitor(1)' key in the section "PROVIDER-1".

Imported from Nokia support database

Give us Feedback
Please rate this document
[1=Worst,5=Best]
Comment