|Applies To||RSA Product Set: DLP|
RSA Product/Service Type: Datacenter
RSA Version/Condition: 9.6 SP2
|Issue||All DLP endpoint agents' status went to the error “Certificate Renewal Pending” as displayed in the EM UI -> Admin -> Endpoint -> Agent Management Panel.|
|Cause||The Endpoint Agent certificate has expired. Under a normal system they will be issued by the Root Endpoint Coordinator.|
|Resolution||To resolve the issue, log on to the Root Endpoint Coordinator and stop and start the RSA DLP Join Service. (This is the service through which EP Agent acquires a certificate.)|
Once done, restart one of the endpoint agents. The Root EPC will issue a new cert to the Endpoint Agent.
Once the Agent has a new certificate, it will send status update messages to the EM.
|Notes||If the RSA DLP Join Service does not start up, then change the account to run under local system.|