Use Case - Deploying One Quantum Security Gateway Using First Time Configuration Wizard

A customer with five Quantum Security Gateways needs to deploy one of them.

The Quantum Security Gateway has factory default settings in a new location.

Zero TouchClosed Allows users to manage the initial configurations of "Small Office" and "Gaia Gateways" easily and remotely. Settings from the Zero Touch Server replace the First Time Configuration Wizard. The Zero Touch Cloud Service runs a Web Portal and supports REST API. All actions are available through API calls. deployment of Quantum Security Gateway with First Time ConfigurationClosed In Zero Touch, the initial settings for new gateways or for gateways at factory default settings. These initial settings include the gateway's Time Zone, Administrator password, and network settings. Wizard is supported starting from the R80.20 version.

For appliances that run the versions R80.20 and R80.30, deployment with the First Time Configuration Wizard is the only supported Zero Touch solution.

Use the Zero Touch Web Portal to fetch settings for one Quantum Security Gateway.

Part 1 - Zero Touch Web Portal

  1. Connect to the Check Point Zero Touch Portal.

  2. Enter your User Center account username (usually an email address) and password.

  3. Choose the Account ID for the purchase of the Security Gateway from the drop-down list on the top line of the window.

  4. Navigate to the Inventory page to find the Security Gateway's MAC address to identify it.

    If this page shows Security Gateways of two types (Gaia Gateway and Small Office Gateway), then use the Type action to select Security Gateways only of type Gaia Gateway.

    Note - If this page shows Security Gateways of two types - Gaia Gateway and Small Office Gateway, then use the Type action to select Security Gateways only of type Gaia Gateway.

    Example:

  5. Navigate to the Templates page to create a Gaia Gateway template:

    1. Click New > Gaia Gateway.

      Example:

    2. Complete all the fields in the template form.

    3. Select Under construction to prevent the deployment of this template until you make the final changes.

    4. Make sure to create or generate a Zero Touch Identification Key.

      You use it later on the Security Gateway in the Gaia First Time Configuration Wizard.

    Example:

  6. Navigate to the Inventory page to claim the Security Gateway:

    1. Select the Security Gateway.

    2. Click Claim.

      The Claim Gateway window opens.

    Example:

  7. In the Claim Gateway window:

    1. In the Name field, enter a name for the Security Gateway.

    2. In the Template field, choose your new template from the drop-down list.

    3. In the Comments field, enter an applicable text.

    4. Click Apply.

    Example:

  8. Navigate to the Claimed Gateways page:

    1. Select the Security Gateway - select the checkbox in the leftmost column.

      Example:

    2. If it is necessary to configure or change settings, click Edit.

    3. Click (Actions) > Unmark as Under Construction to start the deployment.

    4. Optional: Select the Security Gateway and click Deployment Progress to see details about the installation.

      Note - When you do not use Gaia Fast DeploymentClosed Placing gateways into business operation with their chosen configurations. Redeployment is the return to factory default settings to deploy again. images and Gaia Clish scripts, the Deployment Progress window shows the tasks First Time Wizard, Reboot, and the Run CLISH script (even if the script is empty).

      Example:

    5. The Deployment Status column shows Finished when the configuration is complete on the Security Gateway.

Part 2 - Quantum Security Gateway

Note - This is a separate action which can be performed by another user on the remote site.

  1. Connect to Gaia Portal on the deployed Quantum Security Gateway.

  2. Enter your Gaia login credentials.

  3. The Gaia First Time Configuration Wizard starts.

  4. On the Deployment Options page, select the option Install from Check Point cloud and click Next.

    Example:

  5. On the Connect to Check Point Cloud page, enter the network settings which allow connection to the Internet and click Next.

  6. On the Cloud Service Selection page, select the option Pull appliance configuration.

  7. In the Identification key field, enter the Zero Touch Identification Key you configured in the Zero Touch template and click Next.

    The deployment procedure starts.

    Example: