File Share Encryption

 View Only
  • 1.  Symantec Desktop Encryption Client not updating SSL Cert

    Posted Oct 07, 2015 01:14 PM

    The SSL cert on the Desktop client keeps pulling the original SSL Cert from the server that expried in 2013. It's been updated twice and the install executable has been update since also. Why doesn't the Client pull the new cert? How do you get stop the Always Allow prompt? 

     

    Thank you,

    D



  • 2.  RE: Symantec Desktop Encryption Client not updating SSL Cert

    Posted Oct 13, 2015 12:54 PM

    The client doesn't pull a certificate, it is given by the server, so if it is offering the old certificate, there may be something wrong with the interface.  Go to System>Network and verify that the certificate listed on the interface is the correct one.  I would suggest also going into the Certificates and deleting the old, expired one.

    To stop the Always Allow prompt:
    https://support.symantec.com/en_US/article.TECH149211.html



  • 3.  RE: Symantec Desktop Encryption Client not updating SSL Cert

    Broadcom Employee
    Posted Oct 20, 2015 05:02 AM

    Hi D,

     

    Probably the trust chain is broken and the client cannot verify the certificate.

    In the server run this command (replace the server's FQDN):

    openssl s_client -connect your_server_FQDN:443 -showcerts

    If the verification is successfull then perhaps the issuing CA is not trusted by the client machine.

     

    HHT,

    dcats