How to restart services on a Check Point firewall in order to use the sdopts.rec file
Originally Published: 2018-03-02
Article Number
Applies To
RSA Product/Service Type: Authentication Manager
Issue
Knowledge article 000029015 - Why an IP address override can fix an initial authentication failures with RSA Authentication Manager when the error Authentication Method Failed displays explains how to fix initial authentication failures and why an an IP address override works.
IP address overrides can be configured for any agent that leverages the sdopts.rec file. Despite creating the sdopts.rec, it never seems to work on a Check Point firewall agent (even after a reboot of the Check Point), which uses the RSA Authentication Manager API.
Tasks
- Stop Check Point firewall services.
- Start Check Point firewall services.
Resolution
cpstop cpstart
Very old Check Point firewalls use the following syntax
fwstop fwstart
Notes
- If an sdopts.rec does not exist on the Check Point, create a text file in Notepad or another text editor. If one exists, open the existing file.
- Use the following syntax:
CLIENT_IP=192.168.22.14
Related Articles
Missing sdconf.rec file causes SecurID to fail on Raptor Firewall Number of Views Load balancing not working with sdopts.rec in RSA Authentication Manager 6.0 Number of Views Error: 'Failure in opening file license.rec' while loading RSA ACE/Server token records Number of Views File information of sdconf.rec, sdopts.rec, sdstatus1 and sdstatus.12 files in RSA Authentication Manager Number of Views Authentication Manager agent / server contact list and the sdconf.rec file Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Release Notes for RSA Authentication Manager 8.8 RSA Authentication Manager 8.9 Release Notes (January 2026) Deploying RSA Authenticator 6.2.2 for Windows Using DISM RSA MFA Agent 2.4 for Microsoft Windows Installation and Administration Guide
Don't see what you're looking for?
