1

Run this API:

migrate-export-domain

For API documentation, see the Check Point Management API Reference - search for migrate-export-domain.

2

Calculate the MD5 of the export file:

md5sum <Full Path to Export File>

1

Transfer the export file from the source Multi-Domain Server to the target Multi-Domain Server, to some directory.

Note - Make sure to transfer the file in the binary mode.

2

Make sure the transferred file is not corrupted.

Calculate the MD5 for the transferred file and compare it to the MD5 that you calculated on the source Multi-Domain Server:

md5sum <Full Path to Export File>

1

Run this API:

migrate-import-domain

For API documentation, see the Check Point Management API Reference - search for migrate-import-domain.

2

Make sure that all the required daemons (FWM, FWD, CPD, and CPCA) are in the state "up" and show their PID (the "pnd" state is also acceptable):

mdsstat

If some of the required daemons on a Domain Management Server are in the state "down", then wait for 5-10 minutes, restart that Domain Management Server and check again. Run these three commands:

mdsstop_customer <IP Address or Name of Domain Management Server>

mdsstart_customer <IP Address or Name of Domain Management Server>

mdsstat

1

Configure the Multi-Domain Server Administrators and GUI clients:

1. Run the mdsconfig command
2. Configure the Administrators
3. Configure the GUI clients
4. Exit the mdsconfig menu

2

Assign the Administrators to the Domains.

See the R80.20 Multi-Domain Security Management Administration Guide - Chapter Managing Domains - Section Creating a New Domain and Section Assigning Trusted Clients to Domains.

1

Connect with SmartConsole to the Active Domain (to which this Domain Management Server belongs).

2

Install the applicable policies on all managed Security Gateways and Clusters.