After upgrading gateway from 11.2 to 11.2.1, the default SSL Key was changed from a custom alias to ssl alias which was created new by the upgrade.

There was no private key with alias ssl before the upgrade.

Gateway 11.2.1

The engineering team is aware of this and working on a resolution. The fix is expected to be available in the next release. Meanwhile, use this workaround:

• Log in to Policy Manager.
• Remove the default SSL key flag from the alias SSL key by applying this flag to another known key.
• Reboot the gateway server.
• Log in to Policy Manager again.
• The default key should now be the one you selected in the previous step.
• Once confirmed, you can safely remove the alias SSL key.