To resolve the issue, do the following:
Back up the original NTSG certificate on the Apex One/OSCE server.
- Run CMD command with administrator privileges on the Server.
Using “CertificateManager.exe”, back up the original NTSG certificate on Apex One/OSCE server.
CertificateManager.exe -b [Password] [Certificate path]
You can locate “CertificateManager.exe” via the following path:
- For OSCE XG: %Trend Micro%\OfficeScan\PCCSRV\Admin\Utility\CertificateManager
- For Apex One: %Trend Micro%\Apex One\PCCSRV\Admin\Utility\CertificateManager
Using “exe”, generate a new Trend Micro certificate and replace the existing one.
CertificateManager.exe –c [Backup_Password]
Verify that the OfcNTCer.dat has been recreated：
- Open a command line and run: MMC.
- Click File > Add or Remove Snap-ins.
- Select Certificates > Add > Computer Account > Next > Local Computer > Finish > OK.
- Select Console Root > Certificates (Local Computer) > OfficeScan NT > Certificates.
Double-click the OfficeScan Server NTSG and select the General tab.
It will show that the valid time has been changed.
You may also select the Details tab to check if the serial number has been changed.
At this point, the agent side will synchronize "ofcNTCer.dat" with the next update.
You can also manually trigger the update to synchronize "ofcNTCer.dat".
To confirm that the "OfcNTCer.dat" has been synchronized to the agent side, check whether the serial number is same as on the server side.
- Copy the OfcNTCer.dat to another folder.
- Rename it as OfcNTCer.cer.
- Double-click and select Details.
- Check the serial number.
You can locate "OfcNTCer.dat" via the following path:
- For OSCE XG: %Trend Micro%\OfficeScan Client
- For Apex One: %Trend Micro%\Security Agent