Endpoint Security 10.7.0 Requires Azure Code Signing Updates From April 2023
Last Modified: 2023-10-23 09:01:37 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Endpoint Security 10.7.0 Requires Azure Code Signing Updates From April 2023
Technical Articles ID:
KB96488
Last Modified: 2023-10-23 09:01:37 Etc/GMT Environment
Endpoint Security (ENS) 10.7.0 April 2023 Update and later
Summary
With the ENS 10.7.0 April 2023 Update, we've implemented Azure Code Signing (ACS). To support ACS signing, Windows platforms require specific Microsoft updates to be applied prior to updating to this release. Problem
When you try to install or upgrade to the ENS 10.7.0 April 2023 Update, the installation or update to this version fails. On a Standalone Installation, Upgrade, you see the following error recorded in On an ePolicy Orchestrator (ePO)-based deployment, you see a similar 577 error in the Trellix Agent
<date> <time> I #4600 ScrptMgr Update failed to version Install 10.7.0.xxxx. NOTE: This is a generic Microsoft error code, indicating an issue with Cryptographic Services. Cause
We've implemented ACS with the ENS 10.7.0 April 2023 Update. To support ACS signing, Windows platforms must be updated with patches from Microsoft, before you update to this ENS release. Solution
From Windows 10 22H2 onward, ACS support is included in monthly rollups. The patches required by other Windows operating systems can be found in this Microsoft article: Windows support for the Azure Code Signing program. NOTE: Microsoft may indicate that the specific KB update has expired and recommend that you "update your devices to the latest security quality update." To get this update, you will need to apply a security rollup or cumulative package, as the individual update is no longer available. Affected ProductsLanguages:This article is available in the following languages: |
|