Use a Signed Certificate - Administrator Guide - 6.6 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR Administrator Guide

Product
Cortex XSOAR
Version
6.6
Creation date
2022-09-29
Last date published
2024-03-21
End_of_Life
EoL
Category
Administrator Guide
Abstract

Use a signed certificate in a Cortex XSOAR high availability deployment.

By default Cortex XSOAR servers use a self-signed certificate for a secure HTTP connection. If you are using your own server certificate, you need to make that certificate available to all of your application servers or main hosts.

  1. Place the certificate in the shared file server, under /var/lib/demisto.

  2. For each app server or main host, stop the server.

    sudo service demisto stop

  3. For each app server or main host, add the following to the /etc/demisto.conf file:

    • Security.CertFile: "<path to .pem file>"

    • Security.KeyFile: "<path to .key file>"