I've been doing some additional digging in to this and at least for me I think I've discovered one of the issues with the original device template that we've all been using.
As mentioned above I'm using a UTM-1 appliance running Splat + R75.40.... The command in the device template reads:
<Command Name="DownloadConfigIndirectSCP" value="set idle 180 ${CRLF} snapshot -f%${StorageFilename} ${CRLF} scp -i/home/admin/id_172204111_kiwiscp_openssh_npp.pub /var/CPsnapshot/snapshots/${StorageFilename} ${SCPServerUserName}@${SCPStorageAddress}:./Snapshots ${CRLF}${SCPServerPassword}${CRLF} rm /var/CPsnapshot/snapshots/${StorageFilename}${CRLF}"/>
So far I think everything running up until the above command is fine, the OID for those interested is the Linux OID as Splat uses the same OID as Linux so that's also fine.... (or at least I think so)
Now to the issue at least I am having..... the snapshot command isn't active on UTM-1 and Power-1 appliances, so this is always going to fail, snapshots are currently only supported under the Web UI.... If you SSH to your firewall and run snapshot -h you'll get "this command isn't active" or something similar. So that leads to other options possibly being the backup command which I don't want to use as the warning on the command is that at the end of the backup it will restart all checkpoint products (bad if this is a live firewall) or upgrade_export which I am currently looking in to.
FYI in the short term, I've configured my appliance via the Web UI to send a snapshot to the SCP server daily just to ensure I have a backup at least and some very very basic form of config management all be it on a daily basis rather than on a config change.
I'll update as I get any further, and if fixed I'll put up a new template
[EDIT] All of the above could be wrong and I may be working in the wrong direction.... at least it's keeping me interested [/EDIT]