Hi
HXG!
You can try to start from below information, just make sure that your managed client computers have Symantec Management Agent upgraded to 8.1.x version as NS has.
1. CMS 8.1 must have HTTPs binding set in IIS for Web Site, where NS is installed (add there self-signed or 3rd party signed certificate and make sure that it will be issued for correct CN of NS (fqdn, hostname, etc)
After setting HTTPs binding and required certificate applying for this binding, for now do not enable "Require SSL" option for Web Site where NS is running because all HTTP connected agents will not be able to communicate with NS because:
- Their URL of NS in SMA settings is only http and there is no https else specified with required certificates
2. Open SMP Console -> open default NS Communication profile, enable HTTPs and specify your NS hostname, fqdn with correct HTTPs port.
Open SSL settings and make sure that you have there correct certificate which is binded for HTTPs on NS machine (or import required certificates). Check that needed TLS versions are enabled then save changes.
Now for test purpose, take one of the client Computers and refresh policy to receive updated NS communication profile with SSL settings, HTTPs NS URLs and certificates. Try to switch client SMA from http to https (You can enable diagnostics mode on client PC to manually change NS address
https://knowledge.broadcom.com/external/article/150636/details-on-aexagentutilcom-and-aexnsagen.html) after this check whether SMA started to communicate with NS via HTTPs.
Other steps how to create CEM Web Site, install/setup CEM Gateway etc, you can check old Article
https://community.broadcom.com/groups/viewdocument/how-to-install-cem-functionality-in?CommunityKey=ec843fbd-bc71-48c5-bb12-c9d8042d7cb0&tab=librarydocumentsThanks,
IP.
------------------------------
Software QA Engineer
Broadcom Inc.
------------------------------
Original Message:
Sent: 03-29-2021 02:12 PM
From: ENRIQUE DEGUZMAN
Subject: ITMS CMS 8.1 Implementing Cloud Enable Management on existing CMS 8.1 HTTP environment
Hi All,
Our environment is currently running CMS 8.1 (Upgraded from 7.1 > 7.6 > 8.1) HTTP configured.
We need to implement the Cloud Enabled Management feature and its main requirements is configuring Altiris to run on HTTPS. I have read thru the CEM whitepaper and did not find definitive steps on configuring current implementation of Altiris running on HTTP to HTTPs.
Upgrading to 8.6 is currently not an option for us at this time.
Any guides or docs that lays out the steps to implement this from the SMP, site servers and agents you can point me to?
Thanks!
------------------------------
mklesa
------------------------------