Configure an Engine to Use Custom Certificates - Administrator Guide - 8 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR Administrator Guide

Product
Cortex XSOAR
Version
8
Creation date
2024-09-18
Last date published
2024-11-12
Category
Administrator Guide
Solution
Cloud
Retire_Doc
Retiring
Link_to_new_Doc
/r/Cortex-XSOAR/8/Cortex-XSOAR-Cloud-Documentation
Abstract

Replace the self-signed certificate for an engine with a valid CA certificate for communication tasks.

For communication tasks that go through an engine, you can replace the default self-signed certificate for the engine with your own certificate.

  1. Find the two files created by the engine. The default location is /usr/local/demisto.

    d1.key.pem

    d1.cert.pem

  2. Replace the contents of these files with your own certificates.

  3. Change file owner to demisto:

    chown -R demisto:demisto d1.key.pem

    chown -R demisto:demisto d1.cert.pem

  4. Set the file permissions:

    chmod 600 d1.key.pem

    chmod 644 d1.cert.pem