Administrators attempting to login to the SEP Manager receive an "Unexpected Server Error"
SCM-Server-x.log shows the following errors:
java.sql.SQLException: Cannot create PoolableConnectionFactory (The driver could not establish a secure connection to SQL Server by using Secure Sockets Layer (SSL) encryption. Error: "NotAfter: Fri Jun 24 12:26:17 CDT 2022". ClientConnectionId:1428f428-fcd2-4d76-a525-03393b5b873f)
Caused by: com.microsoft.sqlserver.jdbc.SQLServerException: The driver could not establish a secure connection to SQL Server by using Secure Sockets Layer (SSL) encryption. Error: "NotAfter: Fri Jun 24 12:26:17 CDT 2022". ClientConnectionId:66ec14a4-2fe8-4994-8e1c-eea8476486cd
14.3 RU1 and later
SQL Certificate has expired, causing handshake errors when communicating via SSL
The following steps can be taken to correct the issue with a self-signed certificate.
Note:
Sometimes modifying root.xml doesn't disable the TLS between SEPM and the database, and the user has to use SetSQLServerTLSEncryption.bat script under *:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\Tools\
The usage instructions of this tool can be found in *:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\Tools\SetSQLServerTLSEncryption.html