You edit the httpd.conf file to enable Secure Sockets Layer (SSL) communication between the Symantec Endpoint Protection Manager server and the clients.
If you need to use an alternate port for SSL communication, you must change the port assignment in Symantec Endpoint Protection Manager first.
To enable SSL for the Apache web server
In a text editor, open the following file:
Where %SEPM% is the Symantec Endpoint Protection Manager installation folder.
Find the following entry and remove the hash mark (#) from the text string:
Save and then close the file.
Restart the Symantec Endpoint Protection Manager Webserver service.
To verify SSL works correctly
Enter the following URL in a web browser:
Where ServerHostName is the computer name for Symantec Endpoint Protection Manager and port is the port number. By default, SSL traffic uses port 443.
If the browser displays the word "OK", the SSL connection is successful.
If a page error displays, repeat the previous steps and check that you formatted all strings correctly. Also check that you entered the URL correctly.
To switch the clients to use SSL for communication with Symantec Endpoint Protection Manager
In the Symantec Endpoint Protection Manager console, on the Policies tab, click Policy Components > Management Server Lists.
Double-click the management server list that your client groups and locations use. If you only have the default management server list, duplicate it, and then double-click the new list to edit it.
Click Use HTTPS protocol.
Only click Verify certificate when using HTTPS protocol if you have previously updated the management server with a Certificate Authority-signed certificate and a private key pair.
If you edited a copy of the default management server list, right-click it, click Assign, and then assign it to every group and location.
As the clients receive the updated management server list, the clients switch to HTTPS for communication with Symantec Endpoint Protection Manager.