There are two conditions in resolving this issue:

If the Apex One server website uses a 3rd party certificate (e,g, a certificate signed by corporate Certificate Authority), follow the article on Configuring Apex One to use a certificate signed by corporate Certificate Authority . In re-importing the certificate, make sure to select the option "Mark this key as exportable..."

If the Apex One server uses self-signed certificate, please follow these steps:

Renew the Apex One server web site certificate.

1. On the OfficeScan / Apex One server, open a Command prompt and go to this location:

   \Program Files (x86)\Trend Micro\OfficeScan\PCCSRV directory
   \Program Files (x86)\Trend Micro\Apex One\PCCSRV directory

   

2. Run the following command to add a new certificate to the IIS certificate store:

   svrsvcsetup –GenIISCert

3. Confirm that the certificate is renewed.

   

4. Open the IIS Manager console (inetmgr.exe).
5. In the IIS Manager, expand the Sites folder and highlight the OfficeScan virtual site.

   

6. In the Actions pane, click Bindings... to open the Site Bindings window.

   

7. In the Site Bindings window, select type="https" and click Edit.... The Edit Site Binding window will appear.
8. From the SSL Certificate section, click Select... and verify that the certificate expiration date has been extended, or select the certificate with the latest expiration date.

   

   

9. Click OK to close the window.

Remove the old web site certificate.

1. Open the Certificates MMC Snap-In,
2. Navigate to Certificates (Local Computer) > 'Personal' Store

   

3. Find the expired certificate. Right-click on the certificate then select Delete.