Configuring Sensors to use HTTPS for Signature Updates
Article ID: 288889
Updated On:
Products
Carbon Black Cloud Endpoint Standard (formerly Cb Defense)
Issue/Introduction
Configure the Local Scanner policy to use HTTPS for Signature updates
Environment
- Carbon Black Cloud Console: 0.45 and higher
- Endpoint Standard
- Carbon Black Cloud Sensor: 3.3.x.x and higher
- Microsoft Windows: All supported versions
- Local Scanner installed and enabled by policy to use Carbon Black Cloud servers for updates
Resolution
- Go to Enforce > Policies
- Select desired policy
- Go to Local Scanner tab
- Click Add button under "Update Servers For Onsite Devices" section
- Enter HTTPS URL
https://updates2.cdc.carbonblack.io/update2
- Tick box for "Preferred Servers" for HTTPS entry or delete HTTP entry
- Perform same actions for "Update Servers For Offsite Devices" if desired (recommended)
- Save policy changes
- Allow the Sensor to update on schedule and monitor results or run update manually via RepCLI
- Confirm URL used in C:\Program Files\Confer\scanner\upd.log file
Param 9 --internet-srvs=https://updates2.cdc.carbonblack.io/update2
Additional Information
- Sensor versions prior to 3.3.x.x are not be able to update signatures over an HTTPS session
- Where an organization has Sensors at or below 3.3.x.x the HTTP URL needs to remain
Feedback
Yes
No
Powered by
