Symantec is making an update that will affect all Hosted Reporting customers. As part of a continuous program to improve the security posture of Symantec services and products, several outdated TLS ciphers are being removed from the secure upload service.
This requires that the Server Key associated with the service be rotated, and all customers must trust a new Server Key on their Edge SWG (ProxySG) devices or in scripts. The process is manual, but you can complete it at any time in advance of the key rotation with no outages or restarts needed. If the new key is not trusted at the point the key is rotated, uploads to the hosted reporting service fail until the new key is trusted.
Note that you only need to configure this for the IP address of the regional upload host you are using.
The list of hosts/IP addresses can be found here: Cloud Web Gateway - Reporting Migration to the Google Cloud Platform
This change will be performed any time after March 1, 2024
Complete the steps that are appropriate for your deployment: update the key directly through the device command line interface (CLI), or use the Management Center to execute the commands on managed devices.
Use this method if you must update the key on Edge SWG devices (versions 6.7.x or 7.x) individually.
Enter the following command using the supplied fingerprint
No reboot or service restart is required. After you add a valid key, the device checks the SCP server's SSH-RSA fingerprint against the key when an access log upload is attempted.
Use this method if you manage Edge SWG devices through the Management Center.
Refer to the following example: