Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Checkpoint Discussions
exam questions

Exam 156-315.81 All Questions

View all questions & answers for the 156-315.81 exam
Go to Exam

Exam 156-315.81 topic 1 question 47 discussion

Actual exam question from Checkpoint's 156-315.81
Question #: 47
Topic #: 1
[All 156-315.81 Questions]

The admin is connected via ssh to the management server. He wants to run a mgmt_cli command but got an Error 404 message. To check the listening ports on the management he runs netstat with the results shown below. What can be the cause for the issue?
[Expert@SMS:0]# mgmt_cli show service-tcp name FTP

Username: admin -
Password:
message: "Error 404. The Management API service is not available. Please check that the Management API server is up and running." code: "generic_error"
[Expert@SMS:0]# netstat -anp | grep http
tcp00 0.0.0.0:800.0.0.0:*LISTEN18114/httpd
tcp00127.0.0.1:810.0.0.0:*LISTEN18114/httpd
tcp00 0.0.0.0:44340.0.0.0:*LISTEN9019/httpd2
tcp00 0.0.0.0:4430.0.0.0:*LISTEN 18114/httpd

  • A. Wrong Management API Access settings for the client IP. To correct it go to SmartConsole / Management & Settings / Blades / Management API and press 'Advanced Settings...' and choose GUI clients or ALL IP's.
  • B. The API didn't run on the default port check it with 'api status' and add '--port 4434' to the mgmt_cli command.
  • C. The management permission in the user profile is missing. Go to SmartConsole / Management & Settings / Permissions & Administrators / Permission Profiles. Select the profile of the user and enable 'Management API Login' under Management Permissions.
  • D. The API is not running, the services shown by netstat are the Gaia services. To start the API run 'api start'.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by MingF at Dec. 23, 2022, 6:47 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
sevasokol44
8 months, 2 weeks ago
Selected Answer: C
https://community.checkpoint.com/t5/API-CLI-Discussion/API-WebServices-show-access-layer-returning-404-Not-Found/td-p/102486
upvoted 1 times
...
zut
9 months, 3 weeks ago
Selected Answer: D
I agree with MingF, answer is D
upvoted 1 times
...
DKangaroo
1 year, 1 month ago
Selected Answer: C
C is the correct Answer. > api start is not a Valid command and if it would have been > api restart then D would be correct. However, in this case User needs to have the permission to access the Management API Login -Log in with the management API. https://sc1.checkpoint.com/documents/R81.20/WebAdminGuides/EN/CP_R81.20_SecurityManagement_AdminGuide/Content/Topics-SECMG/Assigning-Permission-Profiles-to-Administrators.htm#Configur2
upvoted 2 times
c0be09e
4 months, 1 week ago
api start is indeed a valid command. Check your docs
upvoted 1 times
...
...
DKangaroo
1 year, 1 month ago
C is the correct Answer. > api start is not a Valid command and if it would have been > api restart then D would be correct. However, in this case User needs to have the permission to access the Management API Login -Log in with the management API. https://sc1.checkpoint.com/documents/R81.20/WebAdminGuides/EN/CP_R81.20_SecurityManagement_AdminGuide/Content/Topics-SECMG/Assigning-Permission-Profiles-to-Administrators.htm#Configur2
upvoted 1 times
...
matfid
1 year, 8 months ago
maybe loxodrome does not use R81.10 or higher because: Management commands fail when the Gaia portal does not use the standard port 443 If you do not wish to upgrade, the following workarounds are available: To make the Management commands work using the mgmt_cli tool, perform the following on the Security Management server: From the Expert mode, run [Expert@Hostname]# export MGMT_CLI_PORT=<port number> OR add the parameter "--port <port-number>" to the mgmt_cli command as an extra argument. Example: [Expert@Hostname]# mgmt_cli login --root true --port 4434 To make the Management commands work using the GUI, perform the following on the Security Management server from the Expert mode: Edit the /home/admin/.bash_profile file and add the line export MGMT_CLI_PORT=<port number> Save the file Run cpstop, cpstart to restart Check Point services.
upvoted 1 times
...
loxodrome
1 year, 10 months ago
I tested it on my management and B is correct
upvoted 3 times
alfirmd
1 year, 10 months ago
sorry, i think you wrong, the API Management port used 443 not 4434 https://community.checkpoint.com/t5/Security-Gateways/R81-x-Ports-Used-for-Communication-by-Various-Check-Point/td-p/38153 https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk156472 I think the correct answer is D
upvoted 2 times
ruank
1 year, 8 months ago
Port 4434 is used when you also have Endpoint management enabled. That said, correct answer is D.
upvoted 1 times
...
...
...
MingF
1 year, 10 months ago
i think D is correct To collect troubleshooting data, please run 'api status -s <comment>' If it has not started, execute the below command. > api start Alternatively, restart the API > api restart
upvoted 3 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel