IIS Binding to Web Certificate is removed when making changes to Symantec Endpoint Encryption Configuration Manager

book

Article ID: 184827

calendar_today

Updated On:

Products

Endpoint Encryption

Issue/Introduction

This is a rare issue and has been observed only once with SEE 11.3. 

This is not expected behavior, however, contact Symantec Support if encountering this issue.

When making any changes to the Symantec Endpoint Encryption Configuration Manager on the SEE Management Server, the IIS binding for the certificate is removed.  This means connections with SEE Clients will no longer work until this is resolved.

Resolution

This issue has been observed in a production setting only once, and the cause of this issue is unknown.  The workaround is specifically to go into IIS, and re-associate the certificate to IIS for that website.

To re-associate the certificate to the website:

1. Open IIS Manager
2. Expand the Sites and click on the "Symantec Endpoint Encryption Services" website
3. On the right side, click on "Bindings..."
4. Click on the "https" type, then click "Edit..."
5. Under the "SSL certificate" field, browse to the server certificate for your website associated to its FQDN, and click "OK".