How to set the Symantec Management Agent communication to use TLS 1.2.

book

Article ID: 170513

calendar_today

Updated On:

Products

Management Platform (Formerly known as Notification Server)

Issue/Introduction

How to set the Symantec Management Agent communication to use TLS 1.2.
Due to many issues with older SSL and TLS 1.0 protocols, the Agent communication needs to be switched to TLS 1.2.

Resolution

1. To configure TLS , you would need to open Settings - Agents/Plug-ins  - Symantec Management Agent - Symantec Management Agent Communication profiles from the SMP console. Then select SSL certificates - edit and select versions which you want to use.
We recommend to enable both 1.1 and 1.2 as the highest will always be selected, but it provides a fallback option when 1.2 is not available.




2. OPTIONAL: For verification you can enabled the Symantec Management Agent diagnostics on a PC by registering the "C:\Program Files\Altiris\Altiris Agent\AeXAgentDiagnostics.dll". Open the Symantec Management Agent > Agent Settings.

Microsoft SQL Server TLS 1.2 reference: https://support.microsoft.com/en-us/help/3135244/tls-1-2-support-for-microsoft-sql-server

Attachments