This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Zinger
Participant
‎2023-03-14 08:59 PM

Server certificate error

Hi everybody! I have an issue, even if it's not a problem to connect with remote access (in the picture bellow), but i want to fix it. Where or how I can create and define certificate to remote access clients?

 
Updating Media

 

Thanks!

Preview file
1328 KB
0 Kudos
11 Replies
the_rock
MVP Diamond
MVP Diamond
‎2023-03-14 09:11 PM

You would always see such a warning presented when connecting very first time to the gateway. AFAIK, dont believe there is a way to circumvent that. It only comes up once, never again.

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
Zinger
Participant
‎2023-03-14 09:15 PM
In response to the_rock

Hi, thank you for the reply, but i face this warning constantly when trying to connect with remote ssl.

0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2023-03-14 09:27 PM
In response to Zinger

What is the gw/client version?

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
Zinger
Participant
‎2023-03-14 09:28 PM
In response to the_rock

GW version is r81.10, this is a clientless access via browser

0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2023-03-14 09:34 PM
In response to Zinger

So old school ssl extender method?

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
Zinger
Participant
‎2023-03-14 09:38 PM
In response to the_rock

yes ) the customer have only 5 concurrent conections, and use it only for RDP, for him it's difficult to instruct every employee for how install/update and do other things. So this option of connecting through a browser is more convenient and practical for him

0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2023-03-14 09:36 PM
In response to Zinger

Either way, looking at your attachment again, it makes me wonder if cert presented by the gateway is okay. Can you verify the cert is valid on gateway object?

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
Zinger
Participant
‎2023-03-14 10:06 PM
In response to the_rock

Now I asked the customer to show certificate and attaching photo, as you see with certificate everything is fine:

cert.jpg

0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2023-03-14 10:10 PM
In response to Zinger

Thats internal CA, Im talking about gateway vpn cert.

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
nooni
Collaborator
Collaborator
‎2023-03-15 03:20 AM
In response to Zinger

You need a certificate that is trusted by the clients, and then install for the VPN portal.

The internal certificate will always give a warning if it is not already trusted by the clients.

the_rock
MVP Diamond
MVP Diamond
‎2023-03-15 05:55 AM
In response to nooni

100%, thats good point.

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events