How to use Check Point API with Postman quick guide

What is Postman? It is an API tool. Postman allows you to publish most API’s quickly and easily. It automatically pulls your sample requests, headers, code snippets, etc. You can also easily share your API with the rest of your team if you are working on a project or such.

What is Check Point API and why use it? Check Point is a Security Gateway company(https://www.checkpoint.com) They have Web API available for automating tasks and functions in large scale deployments, and other cool things. It is an interface that enables the usage of set of functions and commands in dynamic and automated fashion.

Here is more in-depth info on types, and details of Check Point API here:

https://sc1.checkpoint.com/documents/latest/APIs/index.html#cli/introduction~v1.3%20

Here are the steps to get your first API published with Postman:-

• Download and install latest Postman from here
• Download and import the latest Gaia API and Web API postman collection for R80.30 from here, extract and import it to Postman
• Open “session management” in Postman, then go to Body and type in your IP, username and password in the section shown, click on Send, then get the sid number from below Body section
• In Settings -> General (tab) -> SSL certificate verification -> OFF

To get more up to date info about Check Point API, you can go here

Once you downloaded the Postman, opened an account, and logged in to it, click on top right icon shown on below screenshot and add Environment.

Then name your environment, and fill out variables, the URL with the management IP, as shown below screenshot. Leave the session area empty for now. You would need to login initially once to get the “sid” which is the session id.

Select the “sid” value as shown below and Right-click and find where it says “session” simply click on it, it automagically gonna take the session in the environment. You can go to your environment settings and check it if you want it, it will be there and it will be the same.

Let’s do a test API call to create a host object by using “add-host”. Take a look at the areas shown on below screenshot. You will receive Status: “200 OK” in green color