Self-Signed Certificates
—You can generate a self-signed
root CA certificate on the firewall and use it to issue server certificates
for the portal, gateway(s), and satellite(s). When using self-signed
root CA certificates, as a best practice, create a self-signed root
CA certificate on the portal and use it to issue server certificates
for the gateways and satellites. This way, the private key used
for certificate signing stays on the portal.