Three-tier security architectures, consisting of enforcement points, a management console, and a GUI, deliver a robust mechanism for creating a single security policy and automatically distributing it to multiple enforcement points. However, service providers and the large enterprise require an infrastructure for managing more than just a single policy. They need to centrally manage multiple distinct policies simultaneously. Provider-1 extends Check Point's standard three-tier architecture by adding the ability to manage multiple policies from a single management server.
A Customer Management Add-On (CMA) is an individual customer policy that is stored within a Multi-Domain Server. It consists of a rule base, a dedicated user database, an object database and a log file. All CMAs are completely isolated from each other. Up to five hundred CMAs can be stored on a single Multi-Domain Server.