This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
kadar2
Contributor
‎2023-06-15 05:45 AM

Identity Collector does not trust gateway certificate

Dear community,

 

recently we faced the following issue in our infrastructure.

We have two identity collectors running on WindowsServer 2012R2. The certificate under Mobile Access --> Portal Settings on one of our gateways was changed to a new wildcard certificate. The previous certificate was also a wildcard. The gateway is R81.10.

As a result of the change, both identity collectors displayed "Gateway Certificate Untrusted", until we performed an update certificate info. The "update" action was performed two weeks after the certificate replacement!

IA rules on the gateway were functioning normally for the two weeks period! We are trying to understand why we did not face any service disruption during this time. Identity awareness logs on the gateway show that AD user/group information was updated to the firewall. If the trust between identity collector/firewall is broken, how is this possible?

 

 

0 Kudos
3 Replies
AkosBakos
Advisor
‎2023-06-15 06:45 AM

Hi kada2,

Does the new cert contain the IP in the SAN field?
If not, the create one with the IP

A

0 Kudos
kadar2
Contributor
‎2023-06-15 09:45 AM
In response to AkosBakos

After updating the certificate info in the collectors, the issue is resolved. We would like to understand why we didn't face any issues with the IA rules on the firewall, given the fact that the certificate was untrusted for two whole weeks! Is it possible that the gateway learnt about the user/group info, by some other means?

0 Kudos
CheckPointerXL
Advisor
‎2024-02-08 12:39 PM
In response to kadar2

Did you solve this mistery?

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events