Configure an Engine to Use Custom Certificates - Administrator Guide - 8 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR Administrator Guide

Product
Cortex XSOAR
Version
8
Creation date
2024-02-14
Last date published
2024-05-30
Category
Administrator Guide
Solution
Cloud
Abstract

Replace the self-signed certificate for an engine with a valid CA certificate for communication tasks.

For communication tasks that go through an engine, you can replace the default self-signed certificate for the engine with your own certificate.

  1. Find the two files created by the engine. The default location is /usr/local/demisto.

    d1.key.pem

    d1.cert.pem

  2. Replace the contents of these files with your own certificates.

  3. Change file owner to demisto:

    chown -R demisto:demisto d1.key.pem

    chown -R demisto:demisto d1.cert.pem

  4. Set the file permissions:

    chmod 600 d1.key.pem

    chmod 644 d1.cert.pem