Enabling SSL communication with Cisco UCS data sources
You can configure the Cisco UCS agent to securely communicate with its Cisco UCS data sources by using SSL. To enable SSL communication, you must add a data source SSL certificate to the certificate truststore of the agent.
About this task
If SSL certificate validation is turned off, the Cisco UCS agent connects to Cisco UCS data sources even if their SSL certificates are expired, untrusted, or invalid. However, turning off SSL certificate validation is potentially not secure and must be done with care.
If a Cisco UCS data source uses an SSL certificate that is signed by a common Certificate Authority (for example, Verisign, Entrust, or Thawte), then it is not necessary to add certificates to the Cisco UCS agent certificate truststore. However, if the data source uses a certificate that is not signed by a common Certificate Authority, as is the case by default, the certificate must be added to the truststore to allow the agent to successfully connect and collect data.