Data Loss Prevention Release from Quarantine to Symantec Messaging Gateway is not working after upgrading Data Loss Prevention or Symantec Management Gateway systems.
Article ID: 169881
Updated On:
Products
Issue/Introduction
The Release from quarantine option in DLP Enforce console no longer works to release the quarantined item from SMG.
It was previously working before upgrading the systems.
In the Enforce Tomcat Localhost log file:
Cause:
com.symantec.dlpx.flexresponse.emailquarantineconnect.EmailQuarantineConnectException: javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suites are inappropriate)com.symantec.dlpx.flexresponse.emailquarantineconnect.EmailQuarantineConnectException: javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suites are inappropriate)
Environment
DLP 14.x - 15.x and 16.x
SMG 10.6.3 version+
Cause
The TLS version for the Enforce to the SMG connection is not supported on SMG. The Enforce email quarantine configuration files need to be modified to use the appropriate settings
Resolution
Modify the configuration files for flex response to use TLS version 1.2 and/or ciphers in the following three files:
- EmailQuarantineConnectApproved.properties
- EmailQuarantineConnectCustom.properties
- EmailQuarantineConnectRejected.properties
Note: These files are located in <drive>:\SymantecDLP\Protect\plugins
The setting "ssl-protocol-version = TLSv1" should be changed to "ssl-protocol-version = TLSv1.2"
Save the files and restart DLP Enforce services in the correct order
Feedback
