Enabling an Integrated Security Product in Symantec Protection Center (SPC) 2.0 fails when an SSL Certificates is unable to be validated.
Last Updated January 13, 2012
Product integration fails when a third party SSL Certificate is unable to be verified against it's Certificate Revocation List (CRL) status.
The supported product could not be enabled unknown error. Check your entry and try again. If this error occurs again, check the system logs for a possible cause of the fault.
The integration of a security product into SPC 2 is dependent on the validity of the products SSL certificate being validated against the Root Certificate Authorities (CA) CRL (Certificate Revocation List). When a network connectivity issue prevents the CA servers being queried the integration of the security solution may fail.
Possible solutions include:
1) If you have a Proxy Server in your environment, and you are unable to bypass it's usage, contact support and request they assist you in configuring the OS Level Proxy settings on the SPC Appliance. The settings configured in the Web Console Settings do not apply to some base level processes. Refer to TECH176835 linked below.
2) Verify and then correct any network issues that might cause verification failure.
Ensure proper internet connectivity
Ensure proxy servers allow un-authenticated traffic from the SPC appliance to pass out to the internet
Verify the SPC server has been properly setup in the local DNS infrastructure
If required, add a hosts entry for the SPC server on any servers that may need to communicate with the SPC server
3) Consider utilizing a different SSL certificate.
In some instances utilizing a different encryption level of certificate has allowed the integration to proceed.
EX: if using a 1024 bit certificate consider using a 2048 bit encrypted certificate
Symantec Corporation has acknowledged that the above-mentioned issue is present in the current version(s) of the product(s) mentioned at the end of this article. Symantec is committed to product quality and satisfied customers.
This issue is currently being considered by Symantec to be addressed in the next major revision of the product. There are no plans to address this issue by way of a patch or hotfix in the current or previous versions of the software at the present time. Please note that Symantec reserves the right to remove any fix from the targeted release if it does not pass quality assurance tests or introduces new risks to overall code stability. Symantec’s plans are subject to change and any action taken by you based on the above information or your reliance upon the above information is made at your own risk.
Please be sure to refer back to this document periodically as any changes to the status of the issue will be reflected here. Please contact your Symantec Sales representative or the Symantec Sales group for upgrade information including upgrade eligibility to the release containing the resolution for this issue. For information on how to contact Symantec Sales, please refer to the following Web site:http://www.symantec.com/business/index.jsp
Product that integrates with SPC and is using a third party SSL Certificate
Imported Document ID: TECH173612
Subscribing will provide email updates when this Article is updated. Login is required to Subscribe