How do I replace certificates on endpoint agents. 

Release :  All 

Component : Data Loss Prevention Endpoint Prevent/Discover

I need to replace the certificates used for endpoint communication due to one of the following:
Alerts:
2134: Certificate authority file is corrupt
2137: Server keystore is missing or corrupt
Updates:
I have updated the endpoint keystore password and generated a new certificate authority file. 

In order for agents to receive updated certificates signed by the new certificate authority:

1. A new agent package must be created by Enforce.
2. The agent must be deployed using an uninstall/reinstall strategy. 

Note: DLP does not trigger an automatic reboot, however, MSI may require a reboot to complete the uninstall process.