Devices cannot communicate after applying MS update 2661254

The patch found at http://support.microsoft.com/kb/2661254  is applied zone-wide and the zone certificate
is an external certificate below the minimum certificate key length 1024 bits

This causes all workstation to be blocked from communicating with the ZENworks Primary servers.

Recreate the external server certificate to reflect 1024 bits or higher.

If the certificate is from the same CA use:


Section 4.3, Replacing an External Server Certificate with a New External Server Certificate Issued by the Same Certificate Authority

https://www.novell.com/documentation/zenworks11/zen11_sys_disaster_recovery/?page=/documentation/zenworks11/zen11_sys_disaster_recovery/data/brr51i7.html


If the certificate is from a different CA use:

4.4 Replacing an External Server Certificate with a New External Server Certificate Issued by a Different Certificate Authority

https://www.novell.com/documentation/zenworks11/zen11_sys_disaster_recovery/?page=/documentation/zenworks11/zen11_sys_disaster_recovery/data/brr52cy.html

This concern does not apply to the ZENworks self-signed certificates and to most commercial third-party certificates.