Server Certificate and Profile
—A WildFire appliance
requires a certificate and certificate profile to identify itself
to firewalls. You can
deploy this certificate from
your enterprise public key infrastructure (PKI), purchase one from
a trusted third-party CA, or generate a self-signed certificate
locally. The server certificate must include the IP address or FQDN
of the WildFire appliance’s management interface in the certificate
common name (CN) or Subject Alt Name. The firewall matches the CN
or Subject Alt Name in the certificate the server presents against
the WildFire appliance’s IP address or FQDN to verify the WildFire
appliance’s identity.