Overview
Cloud Firewall Central Licensing tool (formerly known as CloudGuard Central Licensing tool) for Check Point Security Management Servers and Multi-Domain Servers enables simple and flexible license management on Cloud Firewall Gateways.
The Cloud Firewall Central License
A Central License is a CloudGuard Security Gateway license. It is deployed and managed on the Security Management Server or Multi-Domain Server and distributed from a license pool to all CloudGuard Security Gateways connected to corresponding Management Servers. tool is deployed on the Security Management Server Dedicated Check Point server that runs Check Point software to manage the objects and policies in a Check Point environment within a single management Domain. Synonym: Single-Domain Security Management Server. or Multi-Domain Security Management Server Check Point Single-Domain Security Management Server or a Multi-Domain Security Management Server.. It organizes Cloud Firewall licenses into a shared pool and automatically distributes them between subscribed Cloud Firewall Gateway.
Key features:
-
Scalability - Supports scaling of Security Gateway
Dedicated Check Point server that runs Check Point software to inspect traffic and enforce Security Policies for connected network resources. instances and virtual cores. -
License Distribution - Automatically distributes licenses to Security Gateways.
-
Centralized Management - Streamlines license management.
Supported Solutions
-
All public and private cloud solutions of Check Point Security Management Servers and Multi-Domain Security Management Servers.
Supported versions: R80.20 and higher.
-
All Security Gateways running on public and private cloud platforms with Check Point Cloud Security Solutions: Amazon Web Services (AWS
Amazon® Web Services. Public cloud platform that offers global compute, storage, database, application and other cloud services.), Microsoft Azure Collection of integrated cloud services that developers and IT professionals use to build, deploy, and manage applications through a global network of data centers managed by Microsoft®., Google Cloud Platform Google® Cloud Platform is a suite of products and services that includes hosting, cloud computing, database services and more. Acronym: GCP. (GCP See 'Google Cloud Platform'.), VMware ESXi, VMware NSX-T VMware NSX-T is a network virtualization and security platform that operates within a single data center or cloud environment. It provides software-defined networking, security (like distributed firewall and micro-segmentation), and load balancing for virtualized workloads, containers, and bare-metal servers., Hyper-V, OpenStack An open source cloud-computing infrastructure for service providers and enterprises. It includes modules for administration, storage, networking and Virtual Machine deployment and control., and KVM. -
For the list of supported versions, refer to the Support Life Cycle Policy.
Prerequisites
-
If you use the Central License tool in the MDS (System) Mode on a Multi-Domain Security Management Server (see Multi-Domain Server Modes), make sure each Domain has access to the Internet. Make sure that DNS and proxy settings are correct.
Proxy settings must be configured in SmartConsole
Check Point GUI application used to manage a Check Point environment - configure Security Policies, configure devices, monitor products and events, install updates, and so on. for each Domain:-
Double-click the Domain object to open its properties.
-
Go to Network Management > Proxy to configure proxy settings.
-
-
The Central License tool distributes licenses only to Security Gateways with the policy installed.
|
|
Best Practice - The Management Server and Multi-Domain Security Management Server (in the Domain Mode) must have Internet access to get license contracts from the User Center automatically. If there is no Internet access, you must manually import license contracts. |
