Please share with the community what you think needs improvement with Check Point Security Management.
What are its weaknesses? What would you like to see changed in a future version?
It depends on the user, but all of the checkpoints need improvement. The only place I need a bit of an update, for example, is in the endpoint management. There are some policies that are embedded that you have to examine if you have sensitive users. For some applications, the default acts as a manager. However, in a system with a history of being breached or where users are given access based on their job function, we seem to have issues particularly there. The reporting should be improved in future releases. It needs to be very explicit. This is very important.
As for improvement, again, the bandwidth regulation is an issue - it is not up to my expectations. If they could improve that it would be good. In future releases I'd like to see better integration with other applications and solutions. Also, the cost of the license is too high, it's too expensive.
The client of the management needs to be improved. The solution is a bit slow. The speed should be improved. If there is a possibility to use the URL instead of client management in a future release, that would be ideal. In the last version from 80.20, there are some issues around SSNA Diction. I would like this to be improved.
We had a lot of problems with the VPN blade on the solution. We sometimes have trouble with the performance of the solution. Maybe some performance tuning options could be added in a future release. There should be more visibility about which blade in your firewall is causing the latency. That would be nice as well.
The usability of the solution could be improved.
I would like the ability to have an overview, cross-site: One portal that does all firewalls.