The Data Center Security (DCS) Certificate Utility
search cancel

The Data Center Security (DCS) Certificate Utility


Article ID: 170379


Updated On:


Embedded Security Critical System Protection Critical System Protection Data Center Security Monitoring Edition Data Center Security Server Data Center Security Server Advanced


You must use a Trusted Signed Certificate or regenerate the Self-Signed Certificates

Products supported
Symantec Data Center Security DCS 6.5
Symantec Data Center Security DCS 6.7
Symantec Data Center Security DCS 6.8
Symantec Embedded Security: Critical System Protection (SES:CSP) 6.5, 7.0 or Critical System Protection (CSP) 7.2.


DCS 6.5.x, 6.7.x, 6.8.x

SES:CSP 6.5, 7.0, 7.1

CSP 7.2


Note: DCS 6.9.x is not supported at this time for this version of the utility, please use the DCS 6.9.x Certificate Utility for DCS 6.9.x

The DCS Certificate Utility is used for:

  • Creation of the Certificate Signing Requests needed for the umcserver.ssl, sss.ssl, server-cert.ssl and agent-cert.ssl keystores needed to issue Trusted Signed Certificates.
  • Importing of the Trusted Signed Certificates to the DCS Keystores.
  • Recreation of the self-signed certificates

Attached is the Utility and the Readme file.

Note: If DCS was installed using the IP Address, you must update the <DCS Installation Directory>\umc\ UMC_Server_IP field with the FQDN that was used with the DCS Certificate Utility.

Example of some parameters:

UMC_SERVER_SERVICE = umcservices
UMC_SERVER_SERVICE_TOKEN_VALIDATION_API = /rest/v1.0/auth/token/validate

Additional Information

Depending on Windows Server version, it's OS will have either .net 3.0, .net 3.5, or .net 4.0

We have included the that has been complied for each of these three versions. 
File name in this KB -

Generally speaking, your Windows Server will contain the following .net versions
Server 2008 - .net 3.0 or .net 3.5
Server 2012 and up - .net 4.0

Attachments get_app get_app
DCS Certificate Utility ReadMe.txt get_app