Message Image

Skip main navigation (Press Enter).

Patch Management Group

View Only

Back to discussions

Expand all | Collapse all

MS Update download failure over HTTPS

Jan TrnkaOct 20, 2015 05:00 AM

We were not able to download some recent updates, namely MS15-111 PROXY settings were analyzed, since ...

Migration UserOct 20, 2015 08:48 AM

Implementation Step has attached

A.K.MOct 20, 2015 10:11 AM

Thank you for posting.

1. MS Update download failure over HTTPS

0 Recommend
Jan Trnka
Posted Oct 20, 2015 05:00 AM

Reply Reply Privately
We were not able to download some recent updates, namely MS15-111

PROXY settings were analyzed, since we had suspicion that source address or protocol might be blocked in our enterprise.

We have capured network traffic by WireShark and analyzed collected data .

When we looked in to the installed certificates we found that the “Baltimore CyberTrust Root” is missing which is crucial for HTTPs services.

Here is explanation:

“Microsoft is changing from the GTE CyberTrust Global Root to the Baltimore CyberTrust Root for all public-facing HTTPs services.

We are making this change to stay current with industry-wide security best practices for trusted root certificates. The new root certificate uses a stronger key length and hashing algorithm.”

https://support.microsoft.com/en-us/kb/2842146

I hope that HINT would help to others, who might be sufferting from the same download problem.
2. RE: MS Update download failure over HTTPS

0 Recommend
Migration User
Posted Oct 20, 2015 08:48 AM
| view attached

Reply Reply Privately
Implementation Step has attached

Attachment(s)

Baltimore CyberTrust Root Certificate Updating on Altiris...doc 155 KB 1 version
3. RE: MS Update download failure over HTTPS

0 Recommend
A.K.M
Posted Oct 20, 2015 10:11 AM

Reply Reply Privately
Thank you for posting.

Copyright 2019. All rights reserved.

Powered by Higher Logic