This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
VarunTP
Participant
Tuesday

How to create CSR for the Security Gateway VPN access

We have External firewall Security Gateway with 3 firewalls , and my vpn certificate is getting expire and I have to generate CSR. 

Can anyone help to generate SSL for this security gateway ?  Whether I need to generate from CLI or smartconsole ? since 3 firewalls are in SG .

0 Kudos
4 Replies
PhoneBoy
Admin
Admin
yesterday

This is generally done in the gateway (cluster) object.
If you specify an external CA, I believe it should offer to generate a CSR.

image.png

0 Kudos
VarunTP
Participant
10 hours ago
In response to PhoneBoy

Thanks for the response , I tried this but getting error "The direct CA certificate in the received chain doesn't match the CA certificate ". 

I checked this but couldnt resolve . This is also mention the same error 
How to fix "The direct CA certificate in the received chain doesn't match the CA certificate for whi...

lemme check , thanks 

0 Kudos
the_rock
Legend
Legend
yesterday

What Phoneboy gave is totally valid, but just wondering, when you say vpn cert is getting expired, you can simply highlight it, hit renew and thats it. It will be valid for another year, unless you do below on mgmt server and then renew the cert, it would be good for 3 years.

Andy

https://support.checkpoint.com/results/sk/sk176527

0 Kudos
VarunTP
Participant
10 hours ago
In response to the_rock

Renew option wasnt coming for this particular certificate , might be we have signed with Thirdpart CA 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    Virtual

    Tue 09 Jul 2024 @ 11:00 AM (CDT)

    Americas: Maestro Migration and Upgrade Best Practices
    In-Person

    Thu 11 Jul 2024 @ 10:00 AM (BST)

    CheckMates Live London

    Tue 30 Jul 2024 @ 05:00 PM (CEST)

    Under the Hood: CloudGuard Controller Unleashed
    In-Person

    Thu 11 Jul 2024 @ 10:00 AM (BST)

    CheckMates Live London
    CheckMates Events