Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
diburaj
Explorer

Certificate based VPN with Sonicwall ICA error

Jump to solution

Hello Team 

I had a requirement of establishing the Checkpoint Gateway with the Sonic wall appliance with dynamic IP.

Check point supports only certificate based authentication if we have  dynamic IP.

While trying to get the sonicwall CSR signed from the ICA tool the certificate is not getting validated in Sonicwall while uploading to sonicwall.

 

Can anyone let me know if you had a chance to get the similar setup working in your environment.

 

 

Regards

Dburaj

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin

Either way, more information is needed from the Sonicwall side to understand what, if anything, needs to be done on the Check Point end.

View solution in original post

6 Replies
PhoneBoy
Admin
Admin

Sounds like an issue on the Sonicwall side.
What's the precise error?

0 Kudos
diburaj
Explorer

I am getting the attached error 

The certificate that is signed from the ICA tool is put into the sonicwall and it shows not valid 

0 Kudos
PhoneBoy
Admin
Admin

Is the Sonicwall configured to accept the ICA as a valid Certificate Authority?
In any case, this sounds like a Sonicwall issue.

0 Kudos
diburaj
Explorer

Yes the ICA internal certificate is uploaded to Sonicwall as the trusted certificate.

0 Kudos
PhoneBoy
Admin
Admin

Either way, more information is needed from the Sonicwall side to understand what, if anything, needs to be done on the Check Point end.

diburaj
Explorer

The issue is fixed by the SonicWall. The sonic wall was unable to verify the certificate info.

SonicWall engineering team had developed a patch to fix the issue.

The upcoming releases in SonicWall will have the patch included.

0 Kudos