This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
ash_james
Participant
‎2018-08-31 03:52 AM

Checkpoint management server - lost access after license expiry

Dear Experts,

The license had expired on our in production Checkpoint R77.30 management server and while we were in the process of acquiring a new license, a power outage occurred. After which the MS and the smart dashboard is no longer accessible. Smartdashboard stops at 5% and MS cli SSH connections are also rejected.

Is this normal behaviour  ? How will I be able to update the license once I have it ?

Any help on this would be greatly appreciated.

0 Kudos
9 Replies
Danny
Champion Champion
Champion
‎2018-08-31 04:12 AM

This is not the normal behavior after a license expiration and restart of a Check Point system.

Once you got the new license you should always be able to open SmartUpdate in order to attach the license to your Check Point systems.

R77 Management licenses typically don't 'expire', they just run out of support and you need to renew them (see Contract tab within SmartUpdate -> should always be 'Yes'). Your system doesn't just stop after the support contract expired.

However, do you have a cplic print or screenshot of your license within your UserCenter account available?

Your management server issue most likely results from the power outage. As you are also unable to login via SSH, you'll need to start troubleshooting the system in order to get it up an running again. Are there any error messages shown during start startup of the management server?

ash_james
Participant
‎2018-08-31 04:20 AM
In response to Danny

Hello Mr. Jung, appreciate the quick response. Will rebooting the MS again help ? or will it break anything ?

0 Kudos
Danny
Champion Champion
Champion
‎2018-08-31 04:22 AM
In response to ash_james

What type of system is this, a VMware host, Open Server or Check Point Appliance?

0 Kudos
ash_james
Participant
‎2018-08-31 04:26 AM
In response to Danny

Management server is hosted on a VM and the gateways are 5200 cluster.

0 Kudos
Danny
Champion Champion
Champion
‎2018-08-31 04:28 AM
In response to ash_james

As it's a VM, can you login to the console of the Management system or is this also failing like SSH?

0 Kudos
ash_james
Participant
‎2018-08-31 06:27 AM
In response to Danny

Console login was also not possible. Found another problem from the VM. Problem: filesystem is corrupt or not found. Trying to restore the VM from backup.

Any further advices ?

0 Kudos
Danny
Champion Champion
Champion
‎2018-08-31 06:55 AM
In response to ash_james

If you have certificate based VPNs you need to get your Management system back up and working within the next 20ish hours. If your VM backup doesn't work, check if your have any recent migrate exports you could import into a fresh install of the management server.

0 Kudos
Vladimir
Champion
Champion
‎2018-08-31 09:16 AM
In response to ash_james

Please see this thread for instructions on how to execute system repair on VM Gaia:

https://community.checkpoint.com/thread/6439-report-server-wont-boot-cant-get-into-maintenance-mode 

Had to do this myself recently after accidental power interruption to the server at one of my clients.

In general, I suggest changing boot parameters for virtual systems before you proceed with their configuration.

Bottom line, create another Linux VM, attach Gaia's disk to it, edit boot parameters, dismount the Gaia drive and boot it up.

You'll now have option available to perform filesystem repair.

Cheers,

Vladimir

JozkoMrkvicka
Authority
Authority
‎2018-08-31 07:39 AM

Try to think to deploy redundancy of management.

In case redundant MS is available, such issues will never happen.

Disaster recovery scenario in PRODUCTION environment is a must nowadays...

Kind regards,
Jozko Mrkvicka
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top