Hello ,
We are not able to renew/ view the defaultcert on the firewall .
When we are going to view the default cert we are getting attached error :
Gateway object >> IPsec VPN >> click on the defaultcert >> view
error message : Failed to read the certificate from database
When we are going to renew the default cert we are getting attached error :
Gateway object >> IPsec VPN >> click on the defaultcert >> renew >> generated keys and get internal certificate >> OK
error message : generated keys not found in the database .
We come to know this issue when tunnel was not forming between two checkpoint gateways connected on the same management server . In the logs , We were able to see that due to certificate error phase1 key not installed .
Please note that SIC is established with mgmt server and ntp working porperly .
Can someone assist me on this !!!
![ipsec phase1 error message.JPG ipsec phase1 error message.JPG](https://community.checkpoint.com/t5/image/serverpage/image-id/11336i20A7F09A0666A700/image-size/large?v=v2&px=999)
![defaultcert view error message.JPG defaultcert view error message.JPG](https://community.checkpoint.com/t5/image/serverpage/image-id/11334i7A63DABD8FDDCA25/image-size/large?v=v2&px=999)
![defaultcert renewal error message.JPG defaultcert renewal error message.JPG](https://community.checkpoint.com/t5/image/serverpage/image-id/11335iF6E801F6F4E1FDF1/image-size/large?v=v2&px=999)