Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Mike_Jensen
Collaborator

Expired VPN certificates on gateways - no VPN blades enabled

Jump to solution

After installing access control policy to a active/standby gateway cluster I have been receiving alerts that the VPN certificates on the gateways has expired.  I do not have the IPSec VPN or Mobile Access blades enabled on the cluster so I don't have the option to renew the cert and really don't even need it.

Is there a way I can remove the certificates to clear the message that comes up after installing policy?

 

 

0 Kudos
Reply
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin

Pretty sure certificates need to exist even if you’re not using VPN.
Recommend enabling it, renewing/regenerating the certificate, disabling, and pushing policy.
There should be no harm in this.

View solution in original post

3 Replies
JackPrendergast
Collaborator

Enable IPSEC VPN blade, head to IPSEC VPN on the left hand side menu, either remove or renew the cert.

 

Then, disable IPSEC VPN and push policy.

 

Should clear it.. should....

Mike_Jensen
Collaborator

Instead of enabling the IPSEC VPN blade I went into the ICA Manager on my SMS, deleted the certs in question, and the message still persists after installing policy.  I even did a cpstop/cpstart on the SMS after deleting the certs.

PhoneBoy
Admin
Admin

Pretty sure certificates need to exist even if you’re not using VPN.
Recommend enabling it, renewing/regenerating the certificate, disabling, and pushing policy.
There should be no harm in this.

View solution in original post