A Control Compliance Suite (CCS) 12.5/12.5.1 Agent Update hotfix is available to update required certificates on the agent. The updated certificates enable future upgrades to work without issues.
You must apply this hotfix using the (Agent Product Update) APU mechanism prior to June 5, 2021. The current certificates will expire on June 5, 2021. If the certificates are not updated, Agent Product Update (APU) and Agent Content Update (ACU) jobs will not work on the agents and the agents will need to be upgraded manually for the APU and ACU jobs to work again.
For additional details, including installation instructions, see the readme file that is included with the hotfix package.
The Symantec certificate on 12.x.x agents that is used to authenticate APU or ACU jobs on the agent expires on June 5th 2021. The Hotfix 10128 fix when implemented on your CCS 12.5 or 12.5.1 environment will create an Agent Product Update job that can be run on any 12.0, 12.0.1, 12.5 and 12.5.1 agent to update the agent to 12.5.1+ new Broadcom certificate that allows APU and ACU jobs to run on the agent after June 5th 2021. If any 12.x.x agent is not updated with the new Broadcom certificate before June 5th 2021, then those agent will need to be manually upgraded to 12.5.2 (when it is available later this year) that will have the new Broadcom certificates applied.
NOTE: Only the APU and ACU jobs will be affected after June 5th 2021. All data collection and CER (collection-evaluation-reporting) jobs will continue to work on any agents that have not been updated with the Broadcom certificate.
Hotfix Release : Hotfix 10128
Component : CCS 12.5 and 12.5.1 agents
The following are the prerequisites to install this hotfix:
NOTE: This section is only applicable if you have CCS Agents on Windows 2019 Servers in your environment. This 'Deploying the updates on the CCS Managers component' section can be skipped if you do not have CCS agents on Windows 2019 servers in your CCS environment.
On each CCS manager do the following:
Hotfix File Information:
Official Hotfix 10128 Notification:
KB for Assembly Verifier for 12.5/12.5.1: