This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Kristian_Nyquis
Contributor
‎2018-05-12 05:29 AM

Configuer Externallly managed check point gateway

Hi

I am trying to create a externally managed check point gateway obejct.

I am getting the bellow error  message.

What to do to fix this?

0 Kudos
3 Replies
Vladimir
Champion
Champion
‎2018-05-12 06:40 AM

This simply tells you that you have to create another CA object and import its certificate in to your SMS.

Get the CA cert from remote site that is issued certificate to the externally managed GW and add this object before configuring the Externally Managed Gateway:

1. Get admin of the Externally Managed Gateway to export their CA cert by:

and sending it to you.

2. Create a "Trusted CA" object in your SMS:

And then proceed to create the Externally Managed Gateway object.

Kristian_Nyquis
Contributor
‎2018-05-13 12:42 AM
In response to Vladimir

I have done that, still the same problem.

The deviation I have done is on step 1, as I do not have that on my 1430 Appliance.(R77.20.31) m On that one I am going to in the web interface then to VPN --> Internal Certificate -->  Export Internal CA Certificate and then download the crt file that i import in step 2 above.

0 Kudos
Vladimir
Champion
Champion
‎2018-05-13 07:01 AM
In response to Kristian_Nyquis

Have you performed the CA import on the other side?

Please see  How to configure Site-to-Site VPN between a Locally Managed 600 / 1100 appliance and a Security Gate...  "Site-to-Site VPN between a Locally Managed 600 / 1100 appliance with Dynamic IP address (DAIP) and a Security Gateway".

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top