Limitations

Management Limitations

  • Multi-Domain Security Management

    Sharing global objects, global policies, and global rules between environments is not supported.

  • Management objects

    SSH access to the Security Management Server is not available. Contact support for actions that require SSH access.

  • Unsupported management features

    • VSX Gateways and VSX Clusters management is not supported.

    • SmartProvisioning is not supported.

    • In SmartTasks, the Run Script feature is not supported. (Smart-1 Cloud supports Send Web Request and Send Mail only).

      Important - For information and updates on Smart-1 Cloud external FQDNs and their associated IP addresses, see sk182699.

      Note - To access on-premises/cloud SMTP server, you must allow inbound traffic from Smart-1 Cloud FQDNs based on your region:

      • Ireland: eu-west-1.allowed-ips.checkpoint.com

      • London eu-west-2.allowed-ips.checkpoint.com

      • N. Virginia: us-east-1.allowed-ips.checkpoint.com

      • Sydney: ap-southeast-2.allowed-ips.checkpoint.com

      • Mumbai: ap-south-1.allowed-ips.checkpoint.com

    • Auto-complete of dynamic entities is not supported (for example, if you enter a source, destination, or service in the query bar, the pop-up suggestion bar remains empty).

    • Upgrading Quantum Spark Gateways from the CDT (Central Deployment Tool) is not supported.

    • SmartUpdate is not supported.

    • Uploading files to the Package Repository is not supported in Smart-1 Cloud.

  • Unsupported Management APIs

    Note - Running these APIs may cause unwanted behavior.

    • run_script on the Management Server object

    • migrate-export-domain

    • put-file

    • SmartTasks

  • CloudGuard Network Auto Scaling Solutions

    • CME Automatic Hotfix Deployment is not supported.

    • Migration of an on-premises management database with CloudGuard Network Auto Scaling gateway is not supported. Communication issues may occur between Smart-1 Cloud and the existing CloudGuard Network Auto Scaling gateways.

  • VPN

    • Automatic MEP Topology is not supported.

Logs & Events

  • SmartEvent Policies are not supported. It is not possible to configure custom events or automatic reactions.

    Important - The checkboxes for SmartEvent Software Blades are automatically selected if the user has a corresponding license which is functioning as intended.

  • OPSEC and LEA are not supported.

  • Some widgets in these Views and Reports may not work and return a "Failed to query" error:

    • Views - MTA Live Monitoring

    • Reports - GDPR Security Report, Security Checkup - Advanced

  • Auto-refresh does not refresh the information.

  • Suggestions in Log view is not supported for some values.

  • Cannot search for a specific updatable object in logs.

  • Logs view > Edit profile - Some fields may cause "query failed" error - in this case, open a support ticket.

  • Opening log file from Logs & Events is not supported.

  • Blobs and packet captures are not supported.

  • SmartView web access through the SmartConsole link is not supported.

    To view logs, use the embedded SmartView functionality in SmartConsole.

Migration

  • Migrating on-premises Security Management Server in the Full High Availability Cluster mode to Smart-1 Cloud is not supported.

  • Migration from pre-R81 Multi-Domain Security Management Server to a Smart-1 Cloud server fails (see sk180650 for details).

Integrations with Other Services and Third-party Tools

  • Integration with third-party tools that use SSH access or OPSEC/LEA to the Management Server are not supported.

  • Known unsupported integrations:

    • ThreatCloud Managed Security Service