Environment
Novell ZENworks Configuration Management 11
Novell ZENworks Configuration Management 11.1
Novell ZENworks Configuration Management 11.2
Novell ZENworks Configuration Management 11.1
Novell ZENworks Configuration Management 11.2
Situation
The patch found at http://support.microsoft.com/kb/2661254 is applied zone-wide and the zone certificate
is an external certificate below the minimum certificate key length 1024 bits
This causes all workstation to be blocked from communicating with the ZENworks Primary servers.
is an external certificate below the minimum certificate key length 1024 bits
This causes all workstation to be blocked from communicating with the ZENworks Primary servers.
Resolution
Recreate the external server certificate to reflect 1024 bits or higher.
If the certificate is from the same CA use:
Section 4.3, Replacing an External Server Certificate with a New External Server Certificate Issued by the Same Certificate Authority
https://www.novell.com/documentation/zenworks11/zen11_sys_disaster_recovery/?page=/documentation/zenworks11/zen11_sys_disaster_recovery/data/brr51i7.html
If the certificate is from a different CA use:
4.4 Replacing an External Server Certificate with a New External Server Certificate Issued by a Different Certificate Authority
https://www.novell.com/documentation/zenworks11/zen11_sys_disaster_recovery/?page=/documentation/zenworks11/zen11_sys_disaster_recovery/data/brr52cy.html
If the certificate is from the same CA use:
Section 4.3, Replacing an External Server Certificate with a New External Server Certificate Issued by the Same Certificate Authority
https://www.novell.com/documentation/zenworks11/zen11_sys_disaster_recovery/?page=/documentation/zenworks11/zen11_sys_disaster_recovery/data/brr51i7.html
If the certificate is from a different CA use:
4.4 Replacing an External Server Certificate with a New External Server Certificate Issued by a Different Certificate Authority
https://www.novell.com/documentation/zenworks11/zen11_sys_disaster_recovery/?page=/documentation/zenworks11/zen11_sys_disaster_recovery/data/brr52cy.html
Additional Information
This concern does not apply to the ZENworks self-signed certificates and to most commercial
third-party certificates.