Configure an Engine to Use Custom Certificates - Replace the self-signed certificate for an engine with a valid CA certificate for communication tasks. - Administrator Guide - Cortex XSIAM - Cortex

Configure an Engine to Use Custom Certificates - Replace the self-signed certificate for an engine with a valid CA certificate for communication tasks. - Administrator Guide - Cortex XSIAM - Cortex - Security Operations

Cortex XSIAM Administrator Guide

Product

Cortex XSIAM

Creation date

2024-07-16

Last date published

2025-02-27

Category

Administrator Guide

Retire_Doc

Retiring

Link_to_new_Doc

/r/Cortex-XSIAM/Cortex-XSIAM-Documentation

Abstract

Replace the self-signed certificate for an engine with a valid CA certificate for communication tasks.

For communication tasks that go through an engine, you can replace the default self-signed certificate for the engine with your own certificate.

Find the two files created by the engine. The default location is /usr/local/demisto.
d1.key.pem
d1.cert.pem
Replace the contents of these files with your own certificates.
Change file owner to demisto:
chown -R demisto:demisto d1.key.pem
chown -R demisto:demisto d1.cert.pem
Set the file permissions:
chmod 600 d1.key.pem
chmod 644 d1.cert.pem