This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Amitclass101
Explorer
‎2022-09-20 02:43 AM
Jump to solution

SIC reset in R76SP

Hi All ,

 

I'm having an issue related to SIC my gateway is running on the R76 and SMS is running on R80.20. somedays ago my SIC certificate expired and SIC is broken between the gateway and SMS.  I need to reestablish the SIC without any downtime. is there any way to do this in R76. 

0 Kudos
1 Solution

Accepted Solutions
_Val_
Admin
Admin
‎2022-09-25 11:40 PM
In response to Chris_Atkinson
Jump to solution

@Chris_Atkinson thanks for this.

@Amitclass101 you did not mention the most important part of the information.

This is what SK says for Scalable Platforms:

On Scalable Platform in Security Gateway Mode:

  1. [Expert@HostName]# g_all cp_conf sic init New_Activation_Key norestart

  2. [Expert@HostName]# gexec -f -b all -c 'cpwd_admin stop -name CPD -path "$CPDIR/bin/cpd_admin" -command "cpd_admin stop"'

  3. [Expert@HostName]# gexec -f -b all -c 'cpwd_admin start -name CPD -path "$CPDIR/bin/cpd" -command "cpd"'

View solution in original post

0 Kudos
8 Replies
_Val_
Admin
Admin
‎2022-09-20 03:05 AM
Jump to solution

SIC reset, regardless of the version, will cause downtime on your GW.

That said, both R76 and R80.20 are out of support for a long time.

0 Kudos
Amitclass101
Explorer
‎2022-09-20 03:07 AM
In response to _Val_
Jump to solution

Is these below command will not work on R76 gateway

 

# cp_conf sic init KEY_HERE norestart

# cpwd_admin stop -name CPD -path "$CPDIR/bin/cpd_admin" -command "cpd_admin stop"

# cpwd_admin start -name CPD -path "$CPDIR/bin/cpd" -command "cpd"

 

0 Kudos
_Val_
Admin
Admin
‎2022-09-20 03:20 AM
In response to Amitclass101
Jump to solution

According to sk86521 this should actually work. I was talking about doing SIC reset through cpconfig.

0 Kudos
Amitclass101
Explorer
‎2022-09-23 02:27 PM
In response to _Val_
Jump to solution

One more thing the device which I'm using is 44000 appliance and it is having 4 blade on two chassis, so how can I reset the SIC for all the blade at once without any down time.

0 Kudos
Chris_Atkinson
Employee Employee
Employee
‎2022-09-23 05:04 PM
In response to Amitclass101
Jump to solution

Note support for R76SP.50 ceased in April 2021

sk86521 section 2 details the process for Scalable Platforms using commands prefaced with g - (global).

CCSM R77/R80/ELITE
0 Kudos
Chris_Atkinson
Employee Employee
Employee
‎2022-09-23 05:34 PM
In response to Amitclass101
Jump to solution

These commands are not correct for R76SP release, refer section 2 of the SK (sk86521).

CCSM R77/R80/ELITE
0 Kudos
_Val_
Admin
Admin
‎2022-09-25 11:40 PM
In response to Chris_Atkinson
Jump to solution

@Chris_Atkinson thanks for this.

@Amitclass101 you did not mention the most important part of the information.

This is what SK says for Scalable Platforms:

On Scalable Platform in Security Gateway Mode:

  1. [Expert@HostName]# g_all cp_conf sic init New_Activation_Key norestart

  2. [Expert@HostName]# gexec -f -b all -c 'cpwd_admin stop -name CPD -path "$CPDIR/bin/cpd_admin" -command "cpd_admin stop"'

  3. [Expert@HostName]# gexec -f -b all -c 'cpwd_admin start -name CPD -path "$CPDIR/bin/cpd" -command "cpd"'
0 Kudos
Amitclass101
Explorer
‎2022-10-02 01:19 AM
In response to _Val_
Jump to solution

Thanks for the help we resolved the issue after using this command in proper blade of the firewall.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
 
Upcoming Maestro Events

    CheckMates Events