admin_wizard

Description

Runs the administration client wizard to test connectivity to websites, Exchange server services, or LDAP server.

Note - This wizard saves its log messages in these files:

$CVPNDIR/log/AdminWizardLog.elg
$CVPNDIR/log/wizard.elg
$CVPNDIR/log/wizardDns
$CVPNDIR/log/wizardEstimation
$CVPNDIR/log/wizardLdap
$CVPNDIR/log/wizardProxy

Syntax

admin_wizard

cancel

estimation

exchange_wizard <Exchange Server Address> <User Name> <Password> [<Options>]

ldap <LDAP server>

wizard <Web Site Address>

Important - On Scalable Platforms (Maestro and Chassis), you must run the applicable commands in the Expert mode on the applicable Security Group.

Parameters

Parameter	Description
No Parameters	Shows the built-in help.
`cancel`	Kills the administration client wizard that already runs.
`estimation`	Estimates how many seconds the wizard will run.
`exchange_wizard <Exchange Server Address> <User Name> <Password> [<Options>]`	Tests the response from an Exchange server: Finds the address protocol (HTTP or HTTPS) and authentication method (Basic or NTLM) of the Exchange server services. Checks accessibility of Mobile Access Check Point Software Blade on a Security Gateway that provides a Remote Access VPN access for managed and unmanaged clients. Acronym: MAB. ActiveSync and EWS services for users. For Web command, checks access to the URL. For OWA command, returns the URL to the outlook web access.
	The parameters are: `<Exchange Server Address>` - Specifies the Exchange server by its IP address or hostname. `<User Name>` - Specifies the user name on the Exchange Server. `<Password>` - Specifies the password on the Exchange Server. `<Options>` - Specifies the test options.
	The available test options are: `-t {as \| ews \| owa \| all}` - Specifies the services to test on the Exchange server: Note - To specify more than one service, separate them with a comma. For example: `as,ews` `all` - Tests all of the services (default) `as` - Tests ActiveSync `ews` -Tests Exchange Web Services `owa` - Searches for the Outlook Web Application (OWA) address of the Exchange server `-d <DNS Servers>` - Specifies the DNS servers. `-x <Proxy Servers>` - Specifies the Proxy servers. `-c <Username>:<Password>` - Specifies the user name and password for Proxy server authentication. `-n` - Allows only NTLM authentication instead of Basic and NTLM. `-m <Domain Name>` - Specifies the user domain name. `-s <ActiveSync Path>` - Tests a specified ActiveSync service path (Default: `/Microsoft-Server-ActiveSync`). `-e <EWS Path>` - Tests a specified Exchange Web Services service path (Default: `/EWS/Exchange.asmx`). `-f <File Name>` - Writes the test results to the specified file `-r` - Sends a request with the configured Proxy, DNS, HTTP protocol, and authentication method. If you also specify the "`-n`" option, then the NTLM authentication method is used. If you do not specify the "`-n`" option, then only the Basic authentication method is used. `-v` - Makes the HTTP requests verbose. The verbose result files are saved in the `$CVPNDIR/log/trace_log/` directory. `-p` - Validates the SSL certificate of the web server.
`ldap <LDAP server>`	Tests connectivity to the specified LDAP server. You can specify the LDAP server by its IP address or hostname.
`wizard <Web Site Address>`	Tests connectivity to the specified URL.

Example 1 - Check URL accessibility of 'www.checkpoint.com'

admin_wizard wizard www.checkpoint.com

Example 2 - Check accessibility to the LDAP server 192.168.0.55

admin_wizard ldap 192.168.0.55

Example 3 - Check accessibility for username 'user1' to ActiveSync and EWS on the Exchange server 'exchange.example.com'

admin_wizard exchange_wizard exchange.example.com username user1 -t as,ews