Onboarding AIOps (Automatic Mode)

To monitor your assets with AIOps, you must connect your Security Management Server to your account in the Check Point Portal.

Prerequisites

  1. Make sure you have installed the latest Web SmartConsole Package Take 146 or higher. For installation, see sk170314.

  2. Create an account in Check Point Portal.

Supported Asset Versions

The following table lists the asset versions supported for onboarding AIOps.

Asset Supported Version
Security Management Server

R82 and later
Multi-Domain Security Management Server (MDS)

From R82 and later, MDS can onboard it’s Security Gateways but not the Security Management Server.

For limitations, see sk182647.

Security Gateway

  • VSX Security Gateway, VSNext

  • ElasticXL Gateway

  • Cluster, ClusterXL

R81.20 and later

  • Supported topologies are supported from R82 and later.

Cloud Firewall Gateway

R82 and later

Maestro Security Gateway

R82 and later

Notes:

  • For onboarding on earlier versions, see the Non-Formal Onboarding section in sk182647.

  • For product limitations, see sk182647.

Connectivity Requirements

To enable data transmission from the user environment to AIOps, ensure that outbound connections are allowed to the following IP addresses and URLs.

  • Static IPs

    Region

    Portal URL

    Static IP Addresses

    CA

    portal.checkpoint.com

    • 166.117.123.221

    • 99.83.217.236

    AU

    portal.checkpoint.com

    • 15.197.214.233

    • 3.33.222.204

    IN

    portal.checkpoint.com

    • 15.197.167.248

    • 3.33.187.244

    US

    portal.checkpoint.com

    • 52.223.30.193

    • 35.71.144.247

    EU

    portal.checkpoint.com

    • 75.2.123.205

    • 99.83.172.252

  • Check Point Portal URLs

    Region

    Portal URL

    Cloud Infra GW

    MaaS Mgmt Connect Tunnels Service

    EU

    portal.checkpoint.com

    cloudinfra-gw.portal.checkpoint.com

    maas-mgmt-connect-tunnels-service-2.portal.checkpoint.com

    US

    portal.checkpoint.com

    cloudinfra-gw-us.portal.checkpoint.com

    maas-mgmt-connect-tunnels-service-us-2.portal.checkpoint.com

    AUS

    ap.portal.checkpoint.com

    cloudinfra-gw.ap.portal.checkpoint.com

    maas-mgmt-connect-tunnels-service-ap-2.ap.portal.checkpoint.com

Onboarding Procedure

00:03: Infinity aiops is a cloud-based platform from checkpoint that proactively

00:07: monitors analyzes and optimizes your security infrastructure.

00:11: This video demonstrates how to onboard adopts in smart,

00:15: console, enabling data, and configuration.

00:17: Sharing between Infinity are opiates and your assets specifically the

00:22: management server and gateways.

00:24: Before you begin, make sure you have created an Infinity Portal account, and

00:29: installed the prerequisites on the management server for the prerequisites.

00:33: See the infinity adopts documentation on the top right corner.

00:38: First, you must connect your Security Management server to your account in the Infinity

00:42: Portal, to do that, open, Smart console, click Infinity

00:46: services, and then click get started.

00:49: In the Instructions window, click Get Token.

00:52: The Infinity Portal page appears. Enter the email address of an administrator

00:56: account and click Next.

00:59: From the list, select the Infinity Portal account to connect your Management Server.

01:03: Then, click Next.

01:05: Accept the terms of service and click Next.

01:08: Copy the generated token.

01:10: Go to your smart console and paste, the token in the instructions.

01:13: Window then click connect.

01:16: When the Management server is connected to your Infinity Portal account, the

01:20: status changes to Active.

01:23: To activate Infinity. Arabs, in the infinity events, iops,

01:27: widget click setup.

01:30: In the dialog box, enable Configuration Sharing and Gateways Connector

01:34: and then, click I Agree.

01:37: The initialization process may take some time to monitor the progress.

01:41: Click the three dots icon on the top right corner.

01:45: When the setup is completed, the status of the Infinity Events AIOps

01:50: card becomes Active. To add the assets

01:52: you want to monitor, click Open in a Browser.

01:55: The infinity AI Ops application opens to add the assets.

01:59: You want to monitor, click next?

02:02: Select whether you want to monitor data from all gateways and servers or from

02:06: specific ones only. Then, click Start monitoring.

02:10: From the Select Asset list, select the asset you want to monitor.

02:14: The Asset dashboard displays the details of the selected asset.

02:19: For an overview of all the monitored assets, go to the Overview page

02:24: Thank you for watching

Note - Automatic onboarding enables Security Gateways to securely connect to the Check Point Portal through the Gateways Connector. For more information, see sk180557.

To onboard AIOps in automatic mode:

  1. Log in to SmartConsole.

  2. Go to Infinity Services and click Get Started.

    The Instructions window appears.

  3. To connect your Security Management Server and Security Gateways to Check Point Portal, click Get Token.

    The Check Point Portal Sign In page appears.

  4. Click Next.

  5. Select your Check Point Portal account and click Next.

  6. Accept the terms of service and click Next.

  7. Click Copy Token.

  8. In the SmartConsole Instructions window, paste the token and click Connect.

    When the Management Server is connected to your Check Point Portal account, the Status changes to Active.

  9. To activate AIOps, in the Infinity Events - AIOps widget, click Set Up.

  10. In the dialog box, select Configuration Sharing and Gateways Connector and then click I Agree.

    When the setup is completed, the status of Infinity Events - AIOps card becomes Active.

    Note - The initialization process may take some time. To monitor the progress, click the icon on the top-right corner.

  11. Log in to Check Point Portal and access the Events & AIOps Administrator Portal.

  12. From the left navigation panel, click AIOps.

  13. In the Connect AIOps widget, click Next.

  14. In the Monitored Security Groups and Servers widget, select the required gateways and servers and then click Start Monitoring.

To disable the connection between Security Gateways and Check Point Portal:

  1. Click the icon on the top-right corner and click Gateways connector.

    The Gateways Connector window appears.

  2. Turn off the toggle button.

  3. Click OK.

If you disable Gateways Connector, you need to set up Infinity Events - AIOps again.

Known Limitations

For known limitations in AIOps, see sk182647.