Agent-to-server communication fails after applying ePolicy Orchestrator 5.10 Update 11
Last Modified: 2023-03-21 04:24:23 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Agent-to-server communication fails after applying ePolicy Orchestrator 5.10 Update 11
Technical Articles ID:
KB95019
Last Modified: 2023-03-21 04:24:23 Etc/GMT Environment
ePolicy Orchestrator (ePO) 5.10 Update 11
Problem
After you install ePO 5.10 Update 11, agent-to-server communication fails. The error below is recorded on the The ePO 5.10 Update 11 implements new crypto modules that require a 2048-bit certificate. Your ePO server continues to use a 1024-bit certificate if the following conditions are true:
System Change
Applied ePO 5.10 Update 11.
Cause
A new crypto module added in ePO 5.10 Update 11 doesn't allow a 1024-bit certificate. If the ePO server uses a 1024-bit certificate, the new crypto module isn't able to use the certificate. So the TLS handshake fails between the Trellix Agent and Agent Handler.
Solution
To resolve this issue:
Workaround
To work around this issue without rolling back ePO 5.10 Update 11, go through the certificate migration process, complete it, and then reinstall all agents to restore the agent-to-server communication.
Affected ProductsLanguages:This article is available in the following languages: |
|