Users

Use the Gaia PortalClosed Web interface for the Check Point Gaia operating system. and Gaia ClishClosed The name of the default command line shell in Check Point Gaia operating system. This is a restricted shell (role-based administration controls the number of commands available in the shell). to manage user accounts.

You can:

These users are created by default and cannot be deleted:

User

Description

admin

Has full read/write capabilities for all Gaia features, from the Gaia Portal and the Gaia Clish.

This user has a User ID of 0, and therefore has all of the privileges of a root user.

monitor

Has read-only capabilities for all features in the Gaia Portal and the Gaia Clish, and can change its own password.

You must give a password for this user before the account can be used.

New users have read‑only privileges to the Gaia Portal and the Gaia Clish / Gaia gClish by default.

You must assign one or more roles before the new users can log in.

Notes:

  • You can assign permissions to all Gaia features or a subset of the features without assigning a user ID of 0.

    If you assign a user ID of 0 to a user account (you can do this only in the Gaia Clish), the user is equivalent to the Admin user and the roles assigned to that account cannot be modified.

  • Do not define a new user for external users.

    An external user is one that is defined on an authentication server (such as RADIUS or TACACS), and not on the local Gaia system.

When you create a user, you can add pre-defined roles (privileges) to the user. For more information, see Roles.

Warning - A user with read and write permission to the Users feature can change the password of another user, or an admin user. Therefore, write permission to the Users feature should be assigned with caution.