Thanks Syed for the great information.
Kindly help to advise on below. Appreciate your response.
1- May I know the steps you provided work for all types of deployments or any deviations, example ->
a) if GWs are in HA
b) if GWs are in cluster
2- so every time when GW cert is about to expire do we need to perform the same steps to renew cert in GW?
impctl gateway stop
impctl gateway unregister
impctl gateway register
impctl gateway start
3-After every patch, upgrade, does the GW cert auto renew?
------------------------------
Rakesh Chinta
Senior Cyber Security Consultant
Singapore
------------------------------
Original Message:
Sent: 03-21-2024 23:00
From: Syed Noor Fazal
Subject: self-signed certificate expired on Gateway
Hello Rakesh,
Thank you for your post, please refer to the following steps to un-register and register back the gateway to MX.
· Go to GW CLI and run the following commands:
impctl gateway stop
impctl gateway unregister
impctl gateway register
impctl gateway start
· Verify with your browser or using this command: openssl s_client -connect <GW-IP>:443 | openssl x509 -noout -dates
------------------------------
Syed Noor Fazal
Product Support Engineer
Original Message:
Sent: 03-21-2024 10:02
From: Rakesh Chinta
Subject: self-signed certificate expired on Gateway
We have received "SSL Certificate Expiry" on Gateway in the vulnerability assessment results.
Please advise the process to renew the default SSL Certificate on Gateway. Thanks in advance.
#DatabaseActivityMonitoring
------------------------------
Rakesh Chinta
Senior Cyber Security Consultant
Singapore
------------------------------