SSP Installer OVF Deployment Shows “Certificate Is Expired” Warning During Review Details
search cancel

SSP Installer OVF Deployment Shows “Certificate Is Expired” Warning During Review Details

book

Article ID: 424278

calendar_today

Updated On:

Products

VMware vDefend Firewall with Advanced Threat Prevention VMware vDefend Firewall

Issue/Introduction

While deploying the SSP installer using the Review Details screen, there is a warning displayed that says:

“The OVF package contains advanced configuration options, which might pose a security risk. Review the advanced configuration options below. Click Next to accept the advanced configuration options.”

Additionally, the vSphere Client displays the error:

“The Certificate is Expired.”

 

   

Affected builds : 

SSP 5.0:

VMware-Security-Services-Platform-Installer-5.0.0.0.0.24631123.ova

SSP 5.1:

VMware-Security-Services-Platform-Installer-5.1.0.0.0.25048619.ova (5.17 GB)

VMware-NDR-Sensor-appliance-5.1.0.0.0.25008725.ova (5.55 GB)  

 

This behavior may cause concern during deployment but does not indicate a runtime ,security issue like vulnerability, data integrity, or platform security.

This issue may be encountered in scenarios involving SSP installer  OVF deployment, including greenfield deployments or restore operations from backup. 

NOTE: This warning does not impact the ability to deploy SSP installer if you choose to ignore the warning.

 

Environment

SSP 5.0 and SSP 5.1

Cause

The signing certificate used during the SSP OVA build process expired on January 3, 2026. As a result, new deployments using the affected SSPi OVA files show certificate-related warnings/errors when deployed via vSphere Client or OVF Tool.

Resolution

This is a known issue affecting SSP versions 5.0 and 5.1.

Broadcom has released Express Patch update for both versions. These patches updates the expiration date of the signature on the Security Services Platform Installer (SSPI) OVA file, resolving the warning during deployment.

 

Note:

The Express Patch applies only to the SSPI OVA signature and does not modify runtime components.

Security Services Platform: Release 5.0.0.1 | January 5, 2026

Contains the following:

Security Services Platform Installer build: 25142035 


Security Services Platform: Release 5.1.0.1 | January 5, 2026

Contains the following:

Security Services Platform Installer build: 25141948

NDR Sensor build: 25142441

 

Here are the links:

Security Services Platform 5.1.0.1 Release Notes

Security Services Platform 5.0.0.1 Release Notes

Powered by Wolken Software