After updating our core to 2016.3 SU7 (I know it's a BETA, but I was hoping fix 382509 would work for us) our Definition updates for Patch and Compliance are failing with following errors:
Signature is not valid
Failed to download platform information
Checking the vaminer.details.log I see several errors:
INFO 6060:LoadingPatchSources : Certificate fail chain of trust validation.
INFO 6060:Main Thread : Signature is not valid
6060:Main Thread : Failed to download platform information
INFO 6060:LoadingPatchSources : Alert.RaiseAlert succeeded : alertId = internal.ldms.SPM.SignaturesDidntMatch
INFO 6060:LoadingPatchSources : File https://patchemea.landesk.com/LDPM8/ldvul.php?KEYWORD=filename&FILENAME=Virus4/10107_updates.xml does not exist
INFO 6060:LoadingPatchSources : About to check source type for preload steps
INFO 6060:LoadingPatchSources : Load: https://patchemea.landesk.com/LDPM8/ldvul.php?%Credentials%KEYWORD=filename&FILENAME=Virus4/
INFO 6060:Main Thread : No updates found.
I have worked with support and re-imported the Digicert GloballRoot CA certificate as a Trusted Root CA, and have tried various settings related to our proxy and firewall with no success. It appears to be related to the 'Verify digital signatures/hashes before downloading setting' which has been enabled in SU7 seemingly without warning (I know it is enabled in 2017.1 and above), but the definition downloads were working in 2016.3 SU6.
How can I get this working again?