About SSL server certificates
Each domain in HCP must have at least one SSL server certificate or certificate signing request (CSR). SSL server certificates are used to verify to clients that the HCP system is the system it claims to be and to set up secure communications between the system and those clients.
HCP uses SSL to provide security for:
- HCP System Management Console, Tenant Management Console, and Search Console
- HCP management API
- Replication
- HTTP, S3 compatible, and WebDAV namespace access protocols
- HCP metadata query API
- HCP Namespace Browser
- HCP Data Migrator
HCP comes with one self-signed SSL server certificate, which is generated and installed automatically when the system is installed. This certificate is associated with the domain that’s created during installation.
Self-signed SSL server certificates are not automatically trusted by web browsers and other HTTP client tools. However, clients can choose to trust them.