Can I configure my Policy Manager Server to use HTTPS instead of HTTP for downloading updates?
For different reasons, when downloading updates from the Policy Manager Server and the F-Secure internet backend, HTTP is used instead of HTTPS.
This protocol cannot be changed. However, updates are digitally signed by F-secure and validated on the client before taking into use. As such, this mitigates any outstanding risk. While HTTP is used for database-updates, the Policy Manager Server and the clients installed with F-Secure end-point use HTTPS-protocol to exchange policies (=product settings) and to upload status information from the client to the server.
Article no: 000022966