Maximizes operational efficiency, enables consistent policy management
Centralizes visibility and management of company-wide security posture
Integrated into Check Point Software Blade Architecture
The SmartProvisioning Software Blade provides an intuitive and easy-to-use security management console to centrally manage device configurations such as operating system and network settings. Networking configurations include DNS, hosts, domain, routing and interface settings.
The SmartProvisioning Blade interface enables easy navigation between the system overview, profile configuration and device configuration panes. The System Overview pane provides a quick snapshot of device status, critical notifications and action status. The Profile pane is the interface for managing provisioning profiles, and the Device pane allows for the easy management of gateways and other device objects.
System Overview Panel
The SmartProvisioning Software Blade is integrated into the Software Blade Architecture. It can be easily and rapidly activated on existing Check Point Security Management systems, Smart-1 appliances or open server platforms, saving time and reducing costs by leveraging existing security infrastructure.
With the Check Point SmartProvisioning Software Blade, administrators can more easily manage security provisioning of large scale deployments by defining profiles for common security policies and device settings. Each profile defines the gateway properties per profile object—which represents multiple, unlimited gateways with similar properties and policies—rather than per physical gateway. This allows for batch operations and reduced administrative overhead.
The SmartProvisioning Blade uses different types of profiles to manage and provision security gateways, including:
All managed devices fetch their assigned profiles from the centralized management server. If the fetched profile differs from the previous profile, the device is updated with the changes. This way, one profile is able to update potentially hundreds and thousands of devices, each acquiring the new common properties while maintaining its own local settings.
Sometimes, administrators need to perform operations that are not part of a device’s configuration. The SmartProvisioning Software Blade supports these one-time operations or actions on a device or group of gateways, which can include running scripts, installing software packages, creating backup images, rebooting, pushing policy, pushing objects, etc. The progress and status of the action can be easily viewed on the action pane.
|Intuitive Simple User Interface (UI)||Yes (including SmartProvisioning wizard)|
|Overview and Status View||View configuration summary, critical notifications and status|
|Configuration Wizard||Simplifies profile creation|
|Shared Configuration||Provisioning and security profiles|
|Granular Device Management||Routing, DNS, Domain, Interfaces, Date&Time (Edge), DHCP (Edge), Backups, VPN configuration, dynamic objects|
|Custom Command Line Interface (CLI)||Supports scripting device configuration|
|Running Scripts and Predefined Operations||Execute scripts remotely from the GUI|
|Fetch Configuration||Yes (SecurePlatform only)|
|Temporary Disable Central Management||Maintenance mode for local device administration|
|Internet Protocol Versions||IPv6 and IPv4|