Endpoint Protection

I have just moved SEPM 12.1.4013.4013 installation from Windows Server 2003 (OLD-SEPSERVER) to Windows 7 (SEPMSERVER). All clients are reporting to the new SEPMSERVER. The migration is successful but when I access the SEPMSERVER using a web browser, Firefox throws a warning:

This Connection is Untrusted

You have asked Firefox to connect securely to SEPMSERVER:8445, but we can't confirm that your connection is secure.

Technical Details

SEPMSERVER:8445 uses an invalid security certificate. The certificate is not trusted because it is self-signed. The certificate is only valid for OLD-SEPSERVER.

(Error code: sec_error_ca_cert_invalid)

There is only 1 option in Firefox, Get me out of here! button. I get a warning before logging in to SEPM server as well. There's an option to add the site to the exclusion list. I did that. However, after logging in, I get the above error with no option to proceed.

How do I move this self signed certificate to the new SEPM machine?

Open a browser and go to http://<yoursepmname>:9090

There should be an option to download the cert

Follow the instructions here:

How to install the certificate for Symantec Protection Center or Endpoint Protection Manager for Web console access

Article:TECH123686

|

Created: 2010-01-04

|

Updated: 2012-10-25

|

Article URL http://www.symantec.com/docs/TECH123686

 

Thanks for the article. It helps.

Here's a bit more info about my issue. I start from http://SEPMSERVER:9090 and click Symantec Endpoint Manager Web Console (LAUNCH). That takes me to this URL:

https://SEPMSERVER:8443/console/apps/sepm

If you notice, the HTTPS port is 8443. Firefox throws a warning (as mentioned in my first post) which says something about port 8445, not 8443. Not sure why it's complaining about port 8445 while the address bar shows 8443.

So to get rid of the warning, I click Firefox Options - Advanced - View Certificates (button) - Servers (tab) - Add Exceptions. In the Locations box, I put https://SEPMSERVER:8445. Click Get Certificate button, Permanently store this exception and finally click Confirm Security Exception button.

I can now access it without seeing any warning.

I had the same problem on 14.3 RU2 and I had to add an exception even for https://myserver:8445 then it worked.

------------------------------
Claudio
IT Systems Administrator
------------------------------

Original Message:
Sent: 02-19-2014 07:58 PM
From: Ronnie J
Subject: Self Signed Digital Certificates Problem

Thanks for the article. It helps.

Here's a bit more info about my issue. I start from http://SEPMSERVER:9090 and click Symantec Endpoint Manager Web Console (LAUNCH). That takes me to this URL:

https://SEPMSERVER:8443/console/apps/sepm

If you notice, the HTTPS port is 8443. Firefox throws a warning (as mentioned in my first post) which says something about port 8445, not 8443. Not sure why it's complaining about port 8445 while the address bar shows 8443.

So to get rid of the warning, I click Firefox Options - Advanced - View Certificates (button) - Servers (tab) - Add Exceptions. In the Locations box, I put https://SEPMSERVER:8445. Click Get Certificate button, Permanently store this exception and finally click Confirm Security Exception button.

I can now access it without seeing any warning.