Manualshelf

Technical data

ManualsBrandsCheck Point Software Technologies ManualsNetworkingVSX-1 3070
71727374757677787980
Using VSX with Multi-Domain Security Management
Check Point VSX Administration Guide NGX R67 | 78
Global Objects
When assigning a global policy to a Domain Management Server, you can choose to assign all global
objects or to assign only those objects required by the global policy Rule Base. Select the appropriate option
for this new Domain.
IPS
Enable the Subscribe Domain to IPS Service option to assign the global IPS policy to this Domain along
with the global policy. Choose one of the following global IPS policy options:
Override: Replace all IPS configuration settings with the global settings (default)
Merge: Preserve any manual IPS configuration settings for this Domain, but update all other settings
using the latest Global settings
Domain Assigned Administrators Page
This page allows you to assign and define specific administrators that are authorized to manage this Domain
and his protected networks. This is in addition to the Multi-Domain Security Management superusers who
are assigned automatically.
To assign an administrator to this Domain, select one or more administrators or administrator groups
from the Not Assigned column and click Add. The administrator moves to the Assigned column and
the Edit Administrator's Domain-Level Permissions window opens. Assign administrator permissions
("Assigning Permissions to Administrators" on page 78).
To remove an administrator, select one or more administrators or administrator groups from the
Assigned column and click Remove. The administrator moves to the Not Assigned column.
To create a new administrator, click New Admin and configure the appropriate properties. For more
information on assigning/un-assigning or adding new administrators, refer to the Multi-Domain Security
Management Administration Guide
(http://supportcontent.checkpoint.com/documentation_download?ID=8741).
Assigning Permissions to Administrators
You can define custom permissions for individual administrators and administrator groups that allow or deny
access to specific administrative tasks. Of particular interest to VSX users, is the option to restrict an
administrator's permission to provision VSX objects.