After upgrading to 14.3 or later LiveUpdate on a Symantec Endpoint Protection Manager (SEPM) fails when the LiveUpdate (LU) source is an HTTPS URL.

Certificate issued does not match the URL being used in LiveUpdate settings.

When using an HTTPS URL in the SEPM LiveUpdate settings, the URL must align with the certificate issued.  For example, if the certificate was issued to a device with a host name "Internal_LiveUpdate_host_3", the HTTPS must use the host name in the URL as well as the IP address of the system, otherwise it may fail.