This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
khanhhv_1509
Explorer
‎2025-06-17 05:02 AM
Jump to solution

SMS

Hi everyone, I'm learning about the components of firewall checkpoint and found out that Cert between SMS and GW will expire in 5 years from the date of creation. I want to ask what will happen when Cert expires and is there a way to re-initialize Cer for one or more GWs?

Preview file
631 KB
0 Kudos
3 Solutions

Accepted Solutions
PhoneBoy
Admin
Admin
‎2025-06-17 11:19 AM
Jump to solution

SIC should handle this on it's own unless there's a connectivity issue between the SMS and Gateway,.
https://support.checkpoint.com/results/sk/sk164255

View solution in original post

the_rock
MVP Platinum
MVP Platinum
‎2025-06-17 04:16 PM
Jump to solution

Its all automatically done.

Andy

Best,
Andy

View solution in original post

0 Kudos
Jim_Oqvist
Employee
Employee
‎2025-06-19 02:08 AM
Jump to solution

Hi, SIC is documented in R82 Quantum Security Management Administration Guide and the process for renewal is documented in here: Certificate Longevity and Statuses

Automatic renewal of SIC certificates ensuring continuous SIC connectivity

SIC certificates are renewed automatically after 75% of the validity time of the certificate has passed. If, for example, the SIC certificate is valid for five years. After 3.75 years, a new certificate is created and downloaded automatically to the SIC entity. This automatic renewal ensures that the SIC connectivity of the Security Gateway is continuous. The administrator can revoke the old certificate automatically or after a set period of time. By default, the old certificate is revoked one week after certificate renewal.

View solution in original post

6 Replies
PhoneBoy
Admin
Admin
‎2025-06-17 11:19 AM
Jump to solution

SIC should handle this on it's own unless there's a connectivity issue between the SMS and Gateway,.
https://support.checkpoint.com/results/sk/sk164255

khanhhv_1509
Explorer
‎2025-06-17 06:39 PM
In response to PhoneBoy
Jump to solution

i still don't understand, how does it work can you explain it to me

 

0 Kudos
the_rock
MVP Platinum
MVP Platinum
‎2025-06-18 12:43 PM
In response to khanhhv_1509
Jump to solution

Do you have access to the sk? Its explained in the solution part.

Andy

Best,
Andy
0 Kudos
PhoneBoy
Admin
Admin
‎2025-06-18 12:47 PM
In response to khanhhv_1509
Jump to solution

When the expiration date is less than a certain value (don't recall offhand what it is), the SIC certificates are automatically renewed.
If you've blocked the necessary ports for this to occur (in the SK I linked), then this process will fail.

0 Kudos
the_rock
MVP Platinum
MVP Platinum
‎2025-06-17 04:16 PM
Jump to solution

Its all automatically done.

Andy

Best,
Andy
0 Kudos
Jim_Oqvist
Employee
Employee
‎2025-06-19 02:08 AM
Jump to solution

Hi, SIC is documented in R82 Quantum Security Management Administration Guide and the process for renewal is documented in here: Certificate Longevity and Statuses

Automatic renewal of SIC certificates ensuring continuous SIC connectivity

SIC certificates are renewed automatically after 75% of the validity time of the certificate has passed. If, for example, the SIC certificate is valid for five years. After 3.75 years, a new certificate is created and downloaded automatically to the SIC entity. This automatic renewal ensures that the SIC connectivity of the Security Gateway is continuous. The administrator can revoke the old certificate automatically or after a set period of time. By default, the old certificate is revoked one week after certificate renewal.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events