All endpoint agents' status went to error with “Certificate Renewal Pending” in RSA DLP

2 years ago

Originally Published: 2015-12-17

Article Number

000065380

Applies To

RSA Product Set: DLP
RSA Product/Service Type: Datacenter
RSA Version/Condition: 9.6 SP2
Platform: Windows

Issue

All DLP endpoint agents' status went to the error “Certificate Renewal Pending” as displayed in the EM UI -> Admin -> Endpoint -> Agent Management Panel.

User-added image

Cause

The Endpoint Agent certificate has expired. Under a normal system they will be issued by the Root Endpoint Coordinator.

Resolution

To resolve the issue, log on to the Root Endpoint Coordinator and stop and start the RSA DLP Join Service. (This is the service through which EP Agent acquires a certificate.)

Once done, restart one of the endpoint agents. The Root EPC will issue a new cert to the Endpoint Agent.
Once the Agent has a new certificate, it will send status update messages to the EM.

Notes

If the RSA DLP Join Service does not start up, then change the account to run under local system.

Don't see what you're looking for?

Potential Impact from Salesforce Device Activation Change

Related Articles

Trending Articles