Error: "Management Center failed to verify the authenticity of the download VPM resources."
search cancel

Error: "Management Center failed to verify the authenticity of the download VPM resources."

book

Article ID: 276025

calendar_today

Updated On:

Products

Management Center Management Center - VA Cloud Secure Web Gateway - Cloud SWG ISG Proxy SWG VA-100

Issue/Introduction

When launching the WebVPM (Visual Policy Manager) to edit policy via Management Center, the following error may be observed:

"Management Center failed to verify the authenticity of the download VPM resources. This may indicate that someone has tampered the software"

Environment

The error occurs when launching the WebVPM and choosing “Reference Device” (the default selection) and the Reference device for said Policy being edited is running an SGOS version before 7.3.17.2 or 7.4.1.2.

Cause

The signing certificate of the WebVPM package expired on November 13, 2023.

Resolution

Fix

If launched from reference device, the new WebVPM version with  the new signing certificate was included on SGOS 7.3.19.1 and 7.4.3.1. For the fix SGOS should be upgraded to one of those versions or above.

7.3.19.1 and 7.4.3.1 include WebVPM 2.2.1.1 and the new certificate was included after WebVPM 2.1.6.2. Find more information about the included WebVPM version at the Release notes of each version.

Workarounds

  • The WebVPM can be launched by using the "Launch anyway" option to proceed past the warning.
  • The WebVPM can be launched using the "Launch from: Package" option:



    Management Center (MC) running 3.3.4.1 has WebVPM package preinstalled, hence no further Image validation needs to happen. For any administrators that already using the WebVPM package option when editing VPM via Management Center as their usual process, no authenticity warning is expected.

Additional Information

MC versions before 3.3.4.1 may not have the latest WebVPM or other Admin Console (AC) packages preinstalled or an administrator may have removed a preinstalled package. If you need to download the WebVPM package or other AC now, the following error may occur:

The reason for this is the same, the WebVPM package and other Admin Console packages expired November 13, 2023.

The new WebVPM package (signed by a valid certificate) is now available in the Broadcom Software Portal.

Click the "Show All releases" button on the download page to see all releases.

This can be seen near the bottom of the "Management Center - VA"  product.

E.g.

 

Administrators that prefer to simply workaround this issue when installing the WebVPM package or ACs released before November 14, 2023,  backdating the MC's clock to Nov 13th, 2023 on MC should prevent the error.

Example:

MGMTcenter# clock day 13

Once the package is installed to MC, you can update the MC’s clock to current the current date ( clock day <current day>  ).

MGMTcenter# clock day 14

Powered by Wolken Software