If the firewall is the certificate authority (CA) that issued the certificate for
your portal and gateways, the firewall replaces the expired certificate with a new
certificate that has the same attributes as the old certificate but with a different
serial number. From the web interface that is hosting the portal or gateway,
Renew the Certificate, and commit the
changes to push the certificate to the portal or the gateway.