mdsconfig

Description

This command starts the Multi-Domain Server Dedicated Check Point server that runs Check Point software to host virtual Security Management Servers called Domain Management Servers. Synonym: Multi-Domain Security Management Server. Acronym: MDS. Configuration Program. This tool configures specific settings for the installed Check Point products.

Note - This command updates the database schema before it imports. First, the command runs pre-upgrade verification. If no errors are found, migration continues. If there are errors, you must fix them on the source R7x Domain Management Server Check Point Single-Domain Security Management Server or a Multi-Domain Security Management Server. according to instructions in the error messages. Then do this procedure again.

For the complete procedure, see the R80.40 Installation and Upgrade Guide.

Syntax

mdsconfig

Menu Options

Menu Option

Description

Leading VIP Interfaces

The Leading VIP Interfaces are real interfaces connected to an external network.

These interfaces are used when you configure virtual IP addresses for Domain Management Servers Virtual Security Management Server that manages Security Gateways for one Domain, as part of a Multi-Domain Security Management environment. Acronym: DMS..

Licenses

Manages Check Point licenses and contracts on this server.

Random Pool

Configures the RSA keys, to be used by Gaia Check Point security operating system that combines the strengths of both SecurePlatform and IPSO operating systems. Operating System.

Groups

Usually, the Multi-Domain Server is given group permission for access and execution.

You may now name such a group or instruct the installation procedure to give no group permissions to the server.

In the latter case, only the Super-User is able to access and execute commands on the server.

Certificate's Fingerprint

Shows the ICA Internal Certificate Authority. A component on Check Point Management Server that issues certificates for authentication.'s Fingerprint.

This fingerprint is a text string derived from the server's ICA certificate.

This fingerprint verifies the identity of the server when you connect to it with SmartConsole Check Point GUI application used to manage a Check Point environment - configure Security Policies, configure devices, monitor products and events, install updates, and so on..

Administrators

Configures Check Point system administrators for this server.

GUI Clients

Configures the GUI clients that can use SmartConsole to connect to this server.

Automatic Start of Multi-Domain Server

Shows and controls if Multi-Domain Server starts automatically during boot.

P1Shell

Obsolete. Do not use this option anymore.

Important - This option and the p1shell command are not supported (Known Limitation PMTR-45085).

Start Multi-Domain Server Password

Configures a password to control the start of the Multi-Domain Server.

IPv6 Support for Multi-Domain Server

Enables or disables the IPv6 Support on the Multi-Domain Server.

Important - R80.40 Multi-Domain Server does not support IPv6 address configuration (Known Limitation PMTR-14989).

IPv6 Support for Existing Domain Management Servers

Enables or disables the IPv6 Support on the Domain Management Servers.

Important - R80.40 Multi-Domain Server does not support IPv6 address configuration (Known Limitation PMTR-14989).

Exit

Exits from the Multi-Domain Server Configuration Program.

Example - Menu on a Multi-Domain Server

[Expert@MyMDS:0]# mdsconfig


Welcome to Multi-Domain Server Configuration Program
=================================================================
This program will let you re-configure your Multi-Domain Server configuration.


Configuration Options:
----------------------
(1)  Leading VIP Interfaces
(2)  Licenses
(3)  Random Pool
(4)  Groups
(5)  Certificate's Fingerprint
(6)  Administrators
(7)  GUI clients
(8)  Automatic Start of Multi-Domain Server
(9)  P1Shell
(10) Start Multi-Domain Server Password
(11) IPv6 Support for Multi-Domain Server
(12) IPv6 Support for Existing Domain Management Servers

(13) Exit

Enter your choice (1-13):