We have ESM Console and server using SSL certificate. This certificate has expired so we lost communication between traps and agents, and we only connect to ESM from the own server.
How can i renew the certificate SSL???? Its mandatory to install executable installation traps again?
Solved! Go to Solution.
Reviewing the PA traps documentation i see that this SSL certificate is selected when you install the .exe server or console. So the only way to change the certificate is reinstall server and console executables?
That was the case when I renewed my certificate. The config is stored in a database that exists independently of the ESM/Core functions. Take a backup/snapshot of your ESM before starting, just in case you have any issues. it wouldn't hurt to contact TAC either and validate the procedure.
HI, sorry you mentioned you solved this by "We solve the problem renewing the certificate via CMD and ISS. It wasnt neccesary to reinstall." Could you please explain a little more what you meant, did you mean to say using CMD line and IIS???
Please see the below documentation.
I was trying to find this document https://live.paloaltonetworks.com/t5/Endpoint-Articles/Traps-on-the-Endpoint-Security-Manager-Loses-... which is mentioned in other posts as a solution however it is impossible to open it (homepage of live.paloaltonetwroks.com is opening instead).
Does somebody has an idea where to find it?
Thx in adv :-)
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!