This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
lullejd
Contributor
‎2021-08-18 02:09 PM

Certificate Authority does not recognize the entity

Hello community,

Today I came across a very weird issue.

One of the 20 gateways on our client's security management servers had its VPN certificate expired and we renewed it.

Upon the renewal of the certificate, the SIC got disconnected.

We tried to reconnect the SIC however to no avail.

Communication between Management and Gateway exists obviously as this has been working for a long time.

We are prompted with this error:

image.png

Upon pressing OK, another windows prompt up:

image.png

 

As a test, I took a gateway from my lab and tried to add it to this security management however same errors cropped up.

I then took the original gateway and tried to connect it to my lab management and it worked fine. So issue is purely 100% management related.

I took some debugs and from the cpd.elg I can see the below :

 

[CPD 23812 4133738816]@RO_PEMBROKE[18 Aug 18:44:19] Error is: General error in Certificate Authority

[CPD 23812 4133738816]@RO_PEMBROKE[18 Aug 18:44:19] cpd_recived_cb_ctx: err = -9 CPSIC Error: Could not receive the SIC certificate from SmartCenter Server. (ctx id=0).

Will not schedule the sic certificate renewal.

 

Has anyone came across something like this? We have opened a TAC case also about the issue.

 

Thanks a lot.

EJD

Senior Information Security Engineer
0 Kudos
5 Replies
K_montalvo
Advisor
‎2021-08-18 02:17 PM

I'm trowing this in here, kindly check if this works my friend

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

0 Kudos
K_montalvo
Advisor
‎2021-08-18 02:18 PM
In response to K_montalvo

Also check https://community.checkpoint.com/t5/Management/Revoking-Certificate/m-p/36048

0 Kudos
lullejd
Contributor
‎2021-08-18 02:31 PM
In response to K_montalvo

Thanks for the prompt reply @K_montalvo 

Shouldnt be the case as there are 20 more gateways running with this one and are working fine till now. Its like newly added gateways which are experiencing the issue. 

Senior Information Security Engineer
0 Kudos
K_montalvo
Advisor
‎2021-08-18 02:32 PM
In response to lullejd

Have you tried to reset SIC?

0 Kudos
lullejd
Contributor
‎2021-08-18 03:00 PM
In response to K_montalvo

Yes error pops up when trying to reset sic

Senior Information Security Engineer
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events