All LotusProtector for Mailsecurity which are still on firmwate 2.8 or 2.9 will get an error:
"Unable to download the primary update catalog file. Reason: SSL certificate problem, verify that the CA cert is OK. Details: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed"
This is since 27th of December when ISS renewed their Certificate.
You should Upgrade to the Most current firmware as soon as possibe:
to get the global Catalog and AV Updates and firmware Updates downloaded, please use this fix to install a modified root certificate bundle on your LotusProtector for MailSecurity
tar -zxvf /tmp/bundle_with_iss_intermediate.tgz
cp /etc/apache2/ssl.crt/ca-bundle.crt /etc/apache2/ssl.crt/ca-bundle.crt_org
cp /tmp/ca-bundle.crt /etc/apache2/ssl.crt/ca-bundle.crt
service issDaemon restart
Now you can wait 60 minutes to see if the Update is being downloaded or use this command to download AV Updates:
update-control -i av
to install the most current AV Update.
If you want to update your LPMSS form the command line, use a last command: update-control -i fw
to install the firmware. Please keep in mind, that the firmware 2.8.1 will replace the Operating system with a Suse Enterprise 11 and the Update process can take up to 1 hour. Please have an VMWARE Snapshot available and download at least the last Settings Snapshot in case the update fails