Knowledge Base

Access official resources from Carbon Black experts

IMPORTANT ANNOUNCEMENT: On May 6, 2024, Carbon Black User eXchange (UeX) and Case Management will move to a new platform!
The Community will be in read-only mode starting April 19th, 7:00 AM PDT. Check out the blog post!
You will still be able to use the case portal to create and interact with your support cases until the transition, view more information here!

Environment

App Control Server: All Supported Versions
App Control Agent: All Supported Versions
Certificate Verification/SSL Strong Mode enabled

Objective

Revert the changes made by accidentally enabling Certificate Verification/SSL Strong Mode.

Resolution

Login to the Console and navigate to: https://ServerAddress/shepherd_config.php
Find the Defined Property: SSLMode.
Change the Property Value to: 1
Click Change.

Any Agent that does not check in after making this change will require either:

Exporting the current Server Certificate and importing it to the endpoint.
Manually disabling the Agent's Certificate Verification setting via the command line:

cd "C:\Program Files (x86)\Bit9\Parity Agent"
dascli password GlobalCLIPassword
dascli sslmode 1

Related Content

App Control: What is Certificate Verification?
App Control: How to Export and Import a Self-Signed Certificate for Disconnected Devices
App Control: What is the difference between a CA certificate and a Self-Signed certificate?
App Control: How to Replace Server Certificate in Version 8.x and Higher

Article Information

Author:

Creation Date:

‎02-01-2018

Views:

2617

Copyright © 2005-2023 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.