Your initial cloud certificate was installed when you registered your cloud detector, and you see that it is expiring or has expired.
You wish to know how this impacts the service, and how to renew the certificate.
Certificates expire 3 years from the date that you install them.
After your cloud certificate expires, cloud detection continues, but your Enforce Server is disconnected from the cloud service. Since it is disconnected, the Enforce Server cannot send policy updates or receive incidents. You must apply the certificate renewal bundle to enable the Enforce Server to reconnect to the DLP Cloud Service.
Starting with new installations of Symantec Data Loss Prevention 15.5, certificate renewal is automatic.
However, there are times when you need to follow the below instructions to renew your certificate:
To renew a cloud certificate with a bundle from Technical Support
To verify that the new certificate is installed
To get more information on the pending expiration, successful installation, and other events regarding your cloud certificate
Certificates are valid for 3 years from the date that you install them.
Note: The certificate renewal bundle zip file is valid for 10 days after it is generated. If the file expires before you install it, request a new certificate renewal bundle zip file from Symantec Support.
If the renewal process has not been successful, see MPKI certificate errors in Servers and Detectors Overview for the Enforce Server (broadcom.com).