What to expect in Symantec DLP logs when the cloud renewal certificate process is successful
search cancel

What to expect in Symantec DLP logs when the cloud renewal certificate process is successful

book

Article ID: 236665

calendar_today

Updated On:

Products

Data Loss Prevention Cloud Detection Service for REST Data Loss Prevention

Issue/Introduction

What information is logged when the Symantec Data Loss Prevention cloud renewal bundle is successful?
System > Settings > General > Cloud Certificate > Install certificate

Environment

Data Loss Prevention 15.8

Resolution

Server Events in the Enforce Console will show the following (System > Servers and Detectors > Events):





The localhost.<date>.log will show the following:

INFO [com.vontu.enforce.domainlayer.events.system.SystemEventLogger] Starting the certificate renewal process. The renewal bundle was valid. Certificate renewal process has started. In case for any reason, the certificate process fails, it will be tried again.
INFO [com.symantec.dlp.certificate.retrieval.ScepCertificateRetriever] Using SCEP URL 'https://pki-scep.symauth.com/scep/2.16.840.1.113733.1.16.1.3.2.2.1.105184786/cgi-bin/pkiclient.exe'
INFO [com.symantec.dlp.certificate.retrieval.ScepCertificateRetriever] Using subject = 'CN=xxxx,UID=xxxxx'
INFO [com.symantec.dlp.certificate.retrieval.ScepCertificateRetriever] Generating Certificate Signing Request...
INFO [com.symantec.dlp.certificate.retrieval.ScepCertificateRetriever] Requesting certificate using SCEP Client...
INFO [com.symantec.dlp.certificate.retrieval.ScepRequestor] Creating enrollment transaction...
WARNING [org.jscep.message.PkiMessageDecoder] Unable to verify message because the signedData contained no certificates.
INFO [com.symantec.dlp.certificate.retrieval.ScepRequestor] Checking the response and polling if necessary...
INFO [com.symantec.dlp.certificate.retrieval.ScepRequestor] Transaction result success: true
INFO [com.symantec.dlp.certificate.retrieval.ScepRequestor] Certificate was issued! Store=java.security.cert.CertStore@674ce9a8
INFO [com.symantec.dlp.certificate.retrieval.ScepRequestor] Got certificate:O=xxxxx, OU=MULTI-ALLOWED, OU=DLP_ENFORCE, UID=xxxxx, CN=xxxxxxx
INFO [com.vontu.enforce.domainlayer.events.system.SystemEventLogger] Cloud Service Renewal enrollment: successfully received client certificate from Managed PKI Service. Cloud Service Renewal enrollment: successfully received client certificate from Managed PKI Service.
INFO [com.vontu.manager.admin.servers.clouddetector.timer.EnforceCertificateRenewalSchedulerService] Scheduling certificate renewal job
INFO [com.vontu.enforce.domainlayer.events.system.SystemEventLogger] Managed PKI Service client certificate renewal scheduled. Managed PKI Service client certificate renewal scheduled.

Powered by Wolken Software