Gateway's SIC certificate is getting revoked every few days

Support Center > Search Results > SecureKnowledge Details

Technical Level

Solution ID	sk106308
Technical Level
Product	Quantum Security Management, Quantum Security Gateways
Version	All
Date Created	02-Jun-2015
Last Modified	03-Jun-2015

Symptoms

In Management HA environment, SIC certificate on Gateway is getting revoked every few days.
CPD debug from the Gateway shows:

fwca_read_crl_file: failed to open file read_crl: failed to read mgmt crl fwCRL::fwCRL: - 29 revoked
Audit logs from revocation time shows: "Multiple active Security Management Servers detected: <Management Name> <Management Name>"

Cause

Both Security Management servers are on active state. Due to that, every configuration change on one member will override the database of the other.

Solution

Note: To view this solution you need to Sign In .