Setting the Deep Security Agent to use high security algorithm

Product / Version includes:

Deep Security9.6

Last updated: 2021/08/28

Solution ID: KA-0006521

Category: Configure

Summary

Enable Deep Security Agent (DSA) to use a high security algorithm. You can change the SSL certificate for Deep Security Agent 4118 to SHA-256 with RSA and 2048 key length.

Before doing the procedure below, make sure you have upgraded to Deep Security 9.5 Service Pack 1 Patch 3 or above, Deep Security 9.6 SP1 Patch 1 or above. Upgrading to the latest version is highly recommended.

Do the following:

Execute the commands below on Deep Security Manager server installation path:
dsm_c -action changesetting -name settings.security.defaultKeyLength -value 2048

dsm_c -action changesetting -name settings.security.defaultSignatureAlg -value SHA256WithRSA
Deactivate the DSA clients and reactivate them using the Deep Security Manager console.
Check the SSL certificate files (ds_agent.crt) in the default agent path below:
C:\ProgramData\Trend Micro\Deep Security Agent\dsa_core

Was this article helpful?

Featured

Automation Center

Education Portal

Online Help Center

Service Status

TrendConnect

Setting the Deep Security Agent to use high security algorithm

Setting the Deep Security Agent to use high security algorithm

Product / Version includes:

Summary