Hi All,
I need to know how works the encryption between the communication clients-SEPM. I read the following links:
http://www.symantec.com/business/support/index?page=content&id=TECH210852
http://www.symantec.com/business/support/index?page=content&id=TECH162326
in which is written:
"By default, the SEPM also digitally signs client packages, content updates and policy files. Policy files are also encrypted using the Twofish algorithm."
after is also written:
"All policies and content updates downloaded by clients from the SEPM Apache server are digitally signed and/or encrypted ...
Content Signing:
Managers digitally sign the policy files, content updates, and installation packages they host using the public key contained in the keystore.jks.
Content encryption:
The SEPM encrypts the signed content using the Twofish algorithm using the encryption password created when the SEPM Site is created. This password is not changed when a new certificate is imported into the SEPM using the Manage Server Certificate wizard."
I have the following questions:
1) Is not clear is policies are always encrypted (also if I if I don't configure SEPM Apache server to accept SSL encrypted HTTPS connections) or if they can be only digitally signed
2) How I can verify if in my case is applcated by default the encryption or the digital sign of policies and content update (or both)?
Thanks