This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Forsaken_61
Explorer
‎2024-09-11 08:44 AM

Security Gateway - log Certificate defaultCert will expire in less than 30 days

Hi!

I've got some alerts on my Management Server about certficates that are about to expire. This Is visible under the "blade:VPN" when I search and query for logs. It's also visible in the UI under "Gateways & Servers".

Which Is interesting. Because I don't have the blade "VPN" active on either of my Security Gateways. I've only Threat Emulation & Anti-Virus enabled.

I have an alternative certificate set for Threat Prevention API functionality. But I mean this couldn't related to the VPN certificate warnings?
How to set an alternative certificate for Threat Prevention API functionality (checkpoint.com)

Would be more sense If It said "Threat Prevention API Certificate" Is about to expire, which It soon does. Currently updating them manuelly and keeps and eye. This should in best case generate a log.
When I updated them manually the other day no internal log showed up. Like "certficate" succesfully updated. Neither of that.

Have any other the same issue?

Thanks

0 Kudos
5 Replies
PhoneBoy
Admin
Admin
‎2024-09-11 10:31 AM

Just to understand the situation: you're not using VPN, but you got a message claiming to be related to VPN because the Threat Prevention API certificate was about to expire?

Forsaken_61
Explorer
‎2024-09-12 12:12 AM
In response to PhoneBoy

Exactly! That's correct.

But when I click on "Device & License information" on my Security Gateway object It says that It will expire in october 18th. That doesn't match when I installed the Threat Prevention API certificate. Differs weeks from that. 

Therefore I'm confused and think this Is strange.I dont even have IPSec VPN enabled. It's unchecked.

0 Kudos
PhoneBoy
Admin
Admin
‎2024-09-12 10:54 AM
In response to Forsaken_61

Sounds like a bug that should be reported through TAC: https://help.checkpoint.com

0 Kudos
the_rock
Legend
Legend
‎2024-09-11 10:47 AM

Can you send what you see below?

Andy

 

Screenshot_1.png

 

 

Screenshot_2.png

Forsaken_61
Explorer
‎2024-09-12 12:13 AM
In response to the_rock

On my Security Gateway objects the "IPSec VPN"Is unchecked. I dont have that enabled.

Under "General Properties" --> "Network Security" --> I only have Firewall enabled.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events