Security Issues if SIC is not reset during hardware Upgrade

munit_si@yahoo.com · #1 (**permalink**) 2006-03-14

Hi experts,

If we are doing hardware upgrade for the enforcement Modules, do we need to reset the SIC on Smart server and the old Enforcement module. What will be the security implications, If dont do reset ?

I have heard that by resetting the SIC, we update the CRL ? is it so, if yes , then do we need to install this policy on all the firewalls, if the CRL are maintained locally on the enforcement modules.

anyway to see whether what certificates are issued by ICA ?

Lackie · #2 (**permalink**) 2006-03-14

You should only have to reset SIC if the hostname or the IP addresses change.

munit_si@yahoo.com · #3 (**permalink**) 2006-03-14

Thanks for the instant response
You mean to say that Certificate generated is only dependent on the hostname or ip address ? is their any other fields, which it is dependent.

Lackie · #4 (**permalink**) 2006-03-15

Mainly hostname from what I understand but have seen problems with changing IP address needing to reset SIC.

munit_si@yahoo.com · #5 (**permalink**) 2006-03-16

Quote:

Originally Posted by Lackie

Mainly hostname from what I understand but have seen problems with changing IP address needing to reset SIC.

Thanks

Munit

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode