OfficeScan implements a security checking feature for digital signatures in various scenarios. However, in certain environments (e.g. air-gapped), this feature turns out to block program updates due to certificate issues.
Since OfficeScan 11.0 Service Pack 1 Hot Fix Build 6537 and later releases, an enhanced security checking mechanism was implemented to avoid the above issue and print error message in the OfficeScan server system event log for easier troubleshooting if digital signature checking fails.
In addition, you can now configure the following parameters to determine intervals of uploading digital signature checking failure logs:
- Open the ofcscan.ini file in the \PCCSRV\ folder on the OfficeScan server installation directory.
- Under the Global Setting section, manually add the following key and set it to the time interval in seconds.
Meanwhile, the following parameters used to switch the security checking status will become obsolete to enforce security checking: