CPUG

The Check Point User Group

A Resource For The Check Point Community.  Fast.  Useful.  Independent.

1. Come to CPUG CON 2008 EUROPE in Switzerland on September 8th - 9th!
    Two days full of technical content for Check Point administrators in the beautiful Swiss Alps!
    We already have 52 attendees signed up from 14 countries!
2. CCSA/CCSE One-Week Dual-Certification Training Course with CPUG in San Francisco!
    Courses Starting 8/25, 10/6, 11/3, 12/8, (2009) 1/19, 2/9, 3/9, 4/6, 5/4, 6/8, 7/6, 8/3, 9/7.
3. Corrent S3500 SecureXL Turbocards For Sale - Last Six Remaining - Get Your Spares!
4. Join Us On LinkedIn - We now have a CPUG group.


Go Back   CPUG: The Check Point User Group > Check Point Firewall-1/VPN-1 And Related Products > Miscellaneous
Reload this Page CA renew
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 2006-10-23
Danielpb Danielpb is offline
Senior Member
  
Join Date: 2006-10-23
Posts: 159
Rep Power: 2
Danielpb has an average reputation (10+)
Default CA renew
I'm new here so Hello people hope you can help me out!

okay see if you can answer this if I renew the Internal_CA will it:

1.contact the mgmt in the master list (public ip of mgmt off site)
2.or the ip address (which is a private address located off site) displayed in the CA certificated which is the privte local address.

hope that make sense.

Also if i do renew what connection problems will occure eg VPN connection etc

many thanks

Dan
Last edited by Danielpb; 2006-10-23 at 07:14.
Reply With Quote
  #2 (permalink)  
Old 2006-10-23
RayPesek RayPesek is offline
Senior Member
  
Join Date: 2006-03-19
Location: Northern Ohio
Posts: 873
Rep Power: 3
RayPesek has an average reputation (10+)
Default Re: CA renew
Hi Dan,

Why do you want to do this? Mine had a life of 20 years when installed in 2003.

Ray
Reply With Quote
  #3 (permalink)  
Old 2006-10-24
Danielpb Danielpb is offline
Senior Member
  
Join Date: 2006-10-23
Posts: 159
Rep Power: 2
Danielpb has an average reputation (10+)
Default Re: CA renew
Hi Ray,

The CRL has expired don't know why it was just like that.

cheers

Okay I did a bit of a hit of miss, Anyway it worked maybe some can confirm this....
The certificate is created by the CMA and pushed to the firewall object. As long as you have the CMA ojbect setup (which is remote by the way to the firewall module) as a secondary Smart Center with the correct Public ip address it shoud work.

cheers
Last edited by Danielpb; 2006-10-24 at 04:21. Reason: Solved
Reply With Quote
  #4 (permalink)  
Old 2006-10-25
RayPesek RayPesek is offline
Senior Member
  
Join Date: 2006-03-19
Location: Northern Ohio
Posts: 873
Rep Power: 3
RayPesek has an average reputation (10+)
Default Re: CA renew
Gotcha. I didn't realize it was just the CRL. I thought you were trying to create a new root certificate, which could be a bit problematic. :-)

Glad you got it working,

Ray
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -7. The time now is 11:08.

Contact Us - CPUG Home Page - Archive - Top

Powered by vBulletin® Version 3.7.2
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
LinkBacks Enabled by vBSEO 3.0.0