The server certificates for the rule update servers used by Messaging Gateway and Messaging Gateway for Service Providers will be renewed on May 1, 2020. Following the server certificate change, neither SMG 10.6.5 and earlier or SMG-SP will be able to access rule updates or SMG software updates from the aztec.brightmail.com or swupdate.brightmail.com servers.
The new server certificates are signed with a certificate authority certificate which is not trusted by SMG 10.6.5 or earlier or by SMG-SP.
Legacy versions of the Brightmail products do not have access to the Certificate Authority certificates (i.e. "Digicert" CA) that are being used to sign the certificates that are being deployed on the migrated servers. This will result in connection failures when the SMG attempts to establish sessions with the Broadcom servers.
Release : SMG 10.6.5 or earlier, SMG-SP systems which have not updated their trusted CA bundle