Gateway's SIC certificate is getting revoked every few days

SUPPORT CENTER
USER CENTER / PARTNER MAP
CYBER TALK FOR EXECUTIVES
THREAT INTELLIGENCE
UNDER ATTACK?
- We can help. Learn more about ThreatCloud Incident Response
RISK ASSESSMENT
MY ACCOUNT
- Phone
  
  General
  United States 1-800-429-4391
  International +972-3-753-4555
  
  Support
  24x7 Technical Support
  Americas: 1-972-444-6600
  International: +972-3-6115100
  Toll Free: 1-888-361-5030
- Locations
  
  United States
  Check Point Software Technologies Inc.
  959 Skyway Road
  Suite 300
  San Carlos, CA 94070
  MAP
  
  International
  Check Point Software Technologies Ltd.
  5 Ha'Solelim Street
  Tel Aviv 67897, Israel
  MAP
- Community
  CheckMates User Community
  Blog
- Chinese
- Japanese
- Russian

Support Center > Search Results > SecureKnowledge Details

Solution ID	sk106308
Product	Security Management, Security Gateway
Version	All
Date Created	02-Jun-2015
Last Modified	03-Jun-2015

Symptoms

In Management HA environment, SIC certificate on Gateway is getting revoked every few days.
CPD debug from the Gateway shows:

fwca_read_crl_file: failed to open file read_crl: failed to read mgmt crl fwCRL::fwCRL: - 29 revoked
Audit logs from revocation time shows: "Multiple active Security Management Servers detected: <Management Name> <Management Name>"

Cause

Both Security Management servers are on active state. Due to that, every configuration change on one member will override the database of the other.

Solution

Note: To view this solution you need to Sign In .

THREAT INTELLIGENCE