During the process of failover or load balancing, the client receives the updated management server list and the new certificate. When you update the certificate on a site with multiple management servers and use failover or load balancing, the certificate updates on the management server list. See Disaster recovery best practices for Endpoint Protection.Īfter you update the certificate and the clients check in and receive it, enable secure communications again. Note: If the certificate is corrupted but otherwise still valid, you can perform disaster recovery as a best practice. A site with more than one Symantec Endpoint Protection Manager, if you cannot enable failover or load balancing.A site with a single Symantec Endpoint Protection Manager.You disable secure communications to update the certificate in the following situations: If you disable secure communications, then the clients can still communicate with the server, but do not authenticate communications from the management server. If the certificate is corrupted or invalid, the clients cannot communicate with the server. The clients store a cached copy of the certificate in the management server list. The certificate also digitally signs the policy files and installation packages that the client downloads from it. Symantec Endpoint Protection Manager uses a certificate to authenticate communications between it and the Symantec Endpoint Protection clients.
0 kommentar(er)
