VNA presents a self-signed certificate for port 8443

New installs of VNA 20.2.1 and before as well as upgrades from releases prior to 20.2.2.

This port is not utilized and can be blocked off via firewall rules.

Alternatively, you can remove the below line from the ${VNA_HOME}/wildfly/standalone/configuration/standalone.xml file (after you make a backup copy) followed by restarting the wildly service.

<https-listener name="https" socket-binding="https" security-realm="ApplicationRealm" enable-http2="true" enabled-protocols="TLSv1.2"/>

Disabling this functionality out-of-the-box has been done in all new installs starting with release 20.2.2