I am still on version 6.4 of SEM. A vulnerability scan identified an expired SSL certificate on my SEM appliance on a service related to TCP port 37891. It looks like this port is used for agent communication back to the SEM. The cert apparently expired earlier this year. I am wondering if anyone knows of a way to replace this certificate. The management console has some options for creating and importing certificate requests, but they appear to be only for the web service and do not impact this particular certificate. I am hoping there is some way to replace this certificate that does not involve me having to update the appliance.