The Symantec Integrated Cyber Security Exchange (ICDx) appliance needs to use an SSL/TLS certificate that is not the self-signed certificate.
The ICDx install is on Ubuntu Server 16.04 or 18.04 LTS.
ICDx 1.2 or later
Ubuntu Server 16.04 or 18.04 LTS
ICDx generates a self-signed SSL/TLS certificate as part of the installation process. This certificate is used for:
Certificates issued by another certificate authority may be used to replace the self-signed certificate. In order to use a certificate authority issued certificate:
NOTE: Root privileges may be needed to complete this installation.
cp <certificate>.crt /etc/ssl/certs
cp <keyfile>.key /etc/ssl/private
/etc/nginx/snippets/ssl-cert.conf
to point to the new files in the new location:
ssl_certificate /etc/ssl/certs/<certfile>.crt
ssl_certificate_key /etc/ssl/private/<keyfile>.key
systemctl restart nginx