Monday, July 15, 2013

Checkpoint Gaia - How to reset expert password in Gaia

If you happen to forget the expert mode password on CheckPoint Gaia OS, you could find the CheckPoint SecureKnowledge SK92347 (http://supportcontent.checkpoint.com/solutions?id=sk92347) that requires Expert access
Actually if you have at least SSH access to the system you do not need much more that the hash from another user's password. With that hash you can execute a CLISH command to fix your problem

From the "show configuration" command you look for the hash, i.e.:

set user lchiavacci password-hash $1$cQ3vKZFw$cHR$T3gMqcyqP0HdKx12P9

 you copy the hash and execute the command

set expert-password-hash $1$cQ3vKZFw$cHR$T3gMqcyqP0HdKx12P9

at this point the expert password is the same of user lchiavacci

Try it and let me know if it works for you
Posted by at 8 comments:

Thursday, July 11, 2013

CheckPoint - Troubleshooting URLF blade e Identity Awareness

Here are some commands that I use to troubleshoot the integration between Identity Awareness and URL Filtering

Adlog
[Expert@cpfirewall01:0]# adlog a dc

Domain controllers:
Domain Name             IP Address              Connection state                Events in the last hour
===============================================================================================
acme.net;   10.100.17.101;            has connection;                 16531
acme.net;   10.100.17.102;            has connection;                 12230
acme.net;   10.200.28.8;              has connection;                 1436
acme.net;   10.200.35.195;            has connection;                 640
acme.net;   10.200.36.71;             has connection;                 2758
acme.net;   10.200.39.76;             has connection;                 656
acme.net;   10.200.52.10;             has connection;                 1768

Ignored domain controllers on this gateway:
acme.net
        => 10.200.32.48
        => 10.200.34.18



Read more »
Posted by at No comments:
Subscribe to: Posts (Atom)