Hi Guys,
After several discussion with Diamond TAC and countless lab testing, managed to find out the reason which i still need to verify with TAC.
What i have done is to reset SIC on the cluster gateway as the SIC name does not match or tally with CMA hostname. While usually when established SIC the SIC name should be something like this:
So for example if i have CMA with hostname of abc-Mgmt the SIC should be:
CN=XXX-FW-01,O=abc-Mgmt..frqp9w
While for this particular cluster the SIC is:
CN=XXX-FW-01,O=abcdefg..4ifg82
Upon reset and performed export import is successful. Hence probably i will re-set SIC again to ensure the host name get reflected.
*Special thanks to Fiala from Diamond service team for his effort to support this case and not forgetting the rest of the team before reaching to diamond* -> without discussion to disable VPN and tweak of the IPS i may not be able to notice the SIC name somehow mismatch or not tally.
The upgrade log somehow mislead to what i have though to be programming code engine error and i was expecting a hotfix but somehow that is not the case.
Br,
Anthony