I am still working on getting our appliance upgraded. We held back over lockdown as we have virtually all our workforce connecting back using Pulse, 1500 users and despite our software 9.0R4.1 being out of support didn't want to risk the upgrade. However with this new vulnerability and our innability to intall the workaroud, are kinda forced to do the upgrade. I haven't done one before and would like to know the best way of deploying the Client? My predecessor pushed it our using SCCM so he could control the groups it wasbeing pushed to. I can't get my head around this, if we use SCCM do we deploy the client first then upgrade the appliance or visa-versa? OR is the simplest way to push the client from the Appliance automatically? I did try to "google" it but I'm absolutely getting nowhere. If any of you techies can assist or point me in the right direction I'd be greatly appreciative.
You can upgrade your PCS to 9.1R5-9.1R7. This does not have the cert issue and you can also import the XML file without any problem.
With time you can work on the steps to mitigate the cert issue (Ensure that all the end users have the uninstallers, upgrade the PCS to the fix versions and then have them connect to PCS to get the new certificate).
Hope this helps,