If you have a proxy server in your environment and you try to enroll the Symantec Protection Engine scanner with centralized cloud console, you may encounter the following issues:
Certificate pinning does not work correctly when communication between CAF (Common Agent Framework) and centralized cloud console (CWP Server) happens through a proxy. The certificate chain sent by server is not correctly received across proxy. Either proxy modifies the chain or sends its own certificate.
To resolve this issue, you must disable the certificate pinning.
To disable certificate pinning manually