https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/trust-any-certificate-drawbacks/m-p/528082#M1680 <P>You can create a CA cert with openss, then from it create signed certs and load the CA cert on the VM that hosts the XSOAR.</P> <P>&nbsp;</P> <P><A href="https://xsoar.pan.dev/docs/reference/articles/trust-custom-certificates" target="_blank">https://xsoar.pan.dev/docs/reference/articles/trust-custom-certificates</A></P> <P>&nbsp;</P> Sun, 22 Jan 2023 13:14:16 GMT nikoolayy1 2023-01-22T13:14:16Z https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/trust-any-certificate-drawbacks/m-p/527712#M1657 <P>Hi,</P> <P>&nbsp;</P> <P>What's the drawback of enabling 'trust any certificate' in integration?</P> <P>&nbsp;</P> <P>Thanks</P> Thu, 19 Jan 2023 14:49:25 GMT https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/trust-any-certificate-drawbacks/m-p/527712#M1657 DP696 2023-01-19T14:49:25Z https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/trust-any-certificate-drawbacks/m-p/527959#M1672 <P>It is the same as how people sometimes ignore their browser certificate error. An attacker can potentially impersonate an endpoint and steal the credentials.</P> Fri, 20 Jan 2023 13:48:35 GMT https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/trust-any-certificate-drawbacks/m-p/527959#M1672 arnarayanan 2023-01-20T13:48:35Z https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/trust-any-certificate-drawbacks/m-p/528082#M1680 <P>You can create a CA cert with openss, then from it create signed certs and load the CA cert on the VM that hosts the XSOAR.</P> <P>&nbsp;</P> <P><A href="https://xsoar.pan.dev/docs/reference/articles/trust-custom-certificates" target="_blank">https://xsoar.pan.dev/docs/reference/articles/trust-custom-certificates</A></P> <P>&nbsp;</P> Sun, 22 Jan 2023 13:14:16 GMT https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/trust-any-certificate-drawbacks/m-p/528082#M1680 nikoolayy1 2023-01-22T13:14:16Z