Endpoint Encryption Change Web Access Command fails if TLS 1.0 and TLS 1.1 are disabled


Article ID: 193126


Updated On:


Endpoint Encryption


The Endpoint Encryption Manager Change Web Access Command fails if the Endpoint Encryption server has TLS 1.0 and TLS 1.1 disabled.

The Change Web Access Command allows you to update Endpoint Encryption clients with new Web Server details, Certificate Data or IIS credentials. The command is located under Endpoint Encryption Managed Computers / Set Server Commands.

When you click OK to update the settings you receive this error:



Symantec Endpoint Encryption 11.3 and 11.3 MP1.


Upgrade to Endpoint Encryption 11.3.1 or above.

If you cannot upgrade, temporarily enable TLS 1.0 and TLS 1.1 by opening SEEMS Configuration Manager, navigating to the Web Server section and turning off this option:

Disable TLS 1.0 and TLS 1.1

You will also need to enter the Web Server password again.

Click Save to save the setting.

Reboot the server for this change to take effect.

After you have successfully run the Change Web Access Command, you can disable TLS 1.0 and TLS 1.1 again.

Broadcom is committed to product quality and satisfied customers. This issue is currently being considered by Broadcom to be addressed in a forthcoming version or Maintenance Pack of the product. Please be sure to refer back to this document periodically as any changes to the status of the issue will be reflected here.

Additional Information

Etrack: 4268872