Troubleshooting the issues with scanner enrollment if you have a proxy server
Last Updated April 04, 2019
If you have a proxy server in your environment and you try to enroll the Symatne Protection Engine scanner with centralized cloud console, you may encounter the following issues:
Scanner enrollment fails.
Scanner enrollment succeeds but CAF service stops functioning.
Scanner enrollment succeeds but centralized cloud console does not receive events.
Certificate pinning does not work correctly when communication between CAF (Common Agent Framework) and centralized cloud console (CWP Server) happens through a proxy. The certificate chain sent by server is not correctly received across proxy. Either proxy modifies the chain or sends its own certificate.
To resolve this issue, you must disable the certificate pinning.
To disable certificate pinning manually
Unenroll the scanner if you have not disabled certificate pinning before enrolling the scanner with the centralized cloud console.