Below is the work around to follow in such situations.
1. Connect to the gateway through policy manager and create a new port for example 8444 and enable just TLS 1.0 and under enabled features for this port only check the box for enterprise manager access.
2. Go to Cluster wide properties and add 8444 to admin.esmport.
3. Log in to esm, from configure option under manage gateway tab, choose the cluster and click edit and change the port to 8444 and that should bring the monitoring up