Onboarding Quantum IoT Protect on a Multi-Domain Security Management Server

This onboarding is supported on a single domain only.

  1. In SmartConsole, enter the Multi-Domain Security Management Server IP address and click Login.

  2. Select the MDS context and click Proceed.

  3. From the left navigation pane, click Multi Domain > Domains.

  4. From the Domains column, note down the name of the applicable Domain object (case-sensitive).

  5. Connect to the Multi-Domain Security Management Server through SSH.

  6. Log in to the Expert mode.

  7. Run this command to back up the current $MDSDIR/conf/iot-on-board.conf file:

    cp -v $MDSDIR/conf/iot-on-board.conf{,_BKP}

    Note - If you are running on a version lower than R81.20 Jumbo Hotfix Accumulator Take 89, use the file path:

    $MDS_FWDIR/conf/iot-on-board.conf

  8. Run this command to edit the current $MDSDIR/conf/iot-on-board.conf file:

    vi $MDSDIR/conf/iot-on-board.conf

    Note - If you are running on a version lower than R81.20 Jumbo Hotfix Accumulator Take 89, use the file path:

    $MDS_FWDIR/conf/iot-on-board.conf

  9. In line 4 "domain": "", enter the name of the Domain object.

    Change line 4 from:

    Copy
    {
      "environment": "prod",
      "polling_interval": 60,
      "domain": "",
      "environment_config": {
        "prod": {
          "application_id": "XXX",
          "fog_url": "",
          "api_path": "/app/i2"
        },
        "pre_prod": {
          "application_id": "XXX",
          "fog_url": "https://XXX.checkpoint.com",
          "api_path": "/app/i2"
        },
        "dev": {
          "application_id": "XXX",
          "fog_url": "https://XXX.checkpoint.com",
          "api_path": "/app/infinity2gem"
        }
      }
    }

    to

    Copy
    {
      "environment": "prod",
      "polling_interval": 60,
      "domain": "<NAME OF DOMAIN OBJECT>",
      "environment_config": {
        "prod": {
          "application_id": "XXX",
          "fog_url": "",
          "api_path": "/app/i2"
        },
        "pre_prod": {
          "application_id": "XXX",
          "fog_url": "https://XXX.checkpoint.com",
          "api_path": "/app/i2"
        },
        "dev": {
          "application_id": "XXX",
          "fog_url": "https://XXX.checkpoint.com",
          "api_path": "/app/infinity2gem"
        }
      }
    }
  10. Save the changes in the file.

  11. Exit the Vi editor.

For a Management High Availability environment, repeat the procedure on each Multi-Domain Security Management Server.