Actions for Check Point Infinity #
- Send Data to Check Point Infinity. Sends a custom set of Lucidum data to Check Point Infinity.
Use Cases #
Below are the possible use cases for these actions:
-
If you want to run Lucidum “headless”, you can send relevant data to Check Point Infinity on a regular schedule.
- You can send normalized, enriched Lucidum data to Check Point Infinity to be indexed, searched, and analyzed.
Prerequisites #
To execute Check Point Infinity actions, you must
Configure a Check Point Infinity API connection beforehand. The required parameters are described in the instructions for creating a Check Point Infinity connector in Lucidum https://lucidum.io/docs/microsoft-active-directory.
NOTE. The specified account should have read and write permissions.
Workflows #
- Creating a new Configuration and a new Action
- Cloning an Existing Action
- Creating a new Action from the Location Results page
- Editing a Configuration
- Editing an Action
- Viewing Information about an Action
Check Point Infinity Configuration #
To create a configuration for Check Point Infinity actions:
-
Configuration Name. Identifier for the Configuration. This name will appear in the Lucidum Action Center.
-
URL (required). The URL of API for the Check Point Infinity.
-
Username (required): Check Point Infinity username and password. Creating a read-only user varies between different versions of Check Point Infinity and instructions for doing so can be found in the Check Point user manual. As a general reference, you can use this the guide https://sc1.checkpoint.com/documents/R80.10/WebAdminGuides/EN/CP_R80.10_SecurityManagement_AdminGuide/html_frameset.htm?topic=documents/R80.10/WebAdminGuides/EN/CP_R80.10_SecurityManagement_AdminGuide/162331 to create read-only administrators.
-
Password (required): Check Point Infinity username and password. Creating a read-only user varies between different versions of Check Point Infinity and instructions for doing so can be found in the Check Point user manual. As a general reference, you can use this the guide https://sc1.checkpoint.com/documents/R80.10/WebAdminGuides/EN/CP_R80.10_SecurityManagement_AdminGuide/html_frameset.htm?topic=documents/R80.10/WebAdminGuides/EN/CP_R80.10_SecurityManagement_AdminGuide/162331 to create read-only administrators.
- Max # of Records per Payload. The maximum number of records to send to Check Point Infinity in each action. The default value is “50”.
Create a New Action #
To create an action for Check Point Infinity, contact Lucidum customer care.
