Using the SMC Active Update server

Once you have downloaded the databases on the SMC server, you must configure the SNS firewalls so that they use it as their Active Update server. This can be configured manually if you have few firewalls, or automatically using a script.

The server.crt and server.key files in the folder /etc/certs/activeupdate are used for TLS negotiations. They are generated the first time SMC is run, and the certificate is self-signed. If you prefer to replace them with your own files, restart the SMC server after you select them.