When running LiveUpdate on the Endpoint Protection (SEP) client, the LiveUpdate session fails to connect to the LiveUpdate server.

Other SEP clients in the environment may run LiveUpdate without issues.

The following error is seen in log.lue: 

* Failed to connect to HTTPS server
* Error statement: 
 >> The application experienced an internal error loading the SSL libraries.
* Error code 0x80000000, File: minitri.flg
  Server selection failed for server HTTPS://liveupdate.symantecliveupdate.com/ on port 443.
* Download Error for minitri.flg. SERVER DOES NOT EXIST or some network issue.
* Server Selection Failed.
* Error downloading files. Error Code: 0x8D04802A

• Windows Server 2012
• Windows Server 2008 R2
• Windows 7

Windows Server 2012 and earlier have TLS 1.2 disabled by default for WINHTTP. 

In order to fix this issue, set TLS 1.2 as the DefaultSecureProtocol.  To do this:

1. Add the following two registry keys for 64-bit systems
2. Then reboot the system. 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp]
"DefaultSecureProtocols"=dword:00000800

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp]
"DefaultSecureProtocols"=dword:00000800

• CRE-6633
• For more information, see Microsoft documentation: Update to enable TLS 1.1 and TLS 1.2 as default secure protocols in WinHTTP in Windows