Check Point VPN client error

This solution applies to the Check Point VPN client. First you need to see if the user has the latest version of VPN client installed and if not, for the latest version check this link Check Point remote Access vpn .

Error “VPN-1 server can’t find any certificate to use for IKE”

However, if the error message is “VPN-1 server is unable to find any certificate to use for IKE” when attempting to log in, this is a problem of the internal CA on the Check Point server.

Check Point vpn error

PSec VPN tunnel down with VPN Client message: “VPN-1 server can’t find any certificate to use for IKE”. There is at least one Trusted CA object configured in SmartConsole that does not contain a valid certificate.

Renew CA

To resolve the problem, go to Console, navigate to GAteways&Servers -> IPSec VPN. At Repository of Certificates Available to the Gateway and view server’s certificate. If date is expired just Renew. If the certificate can not be viewed due to some error message, then it is corrupted in some way.

In case the CA object is corrupted, either reimport the CA object’s certificate or delete the CA object if it is no longer in use. view it’s certificate. If the certificate can not be viewed due to some error message, then it is corrupted in some way. In case the CA object is corrupted, either reimport the CA object’s certificate or delete the CA object if it is no longer in use.

Saša

Works as system engineer in Slovenian Enterprise in Microsoft environment focusing on security, deployments, SharePoint, SCCM and CheckPoint firewall. Author of successful blog about IT security, Microsoft tips & tricks, social media, internet trends.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.