The Site Recovery Manager server endpoint certificate establishes the identity of Site Recovery Manager Server to clients. The endpoint certificate secures the communication between the client and Site Recovery Manager Server.

The Site Recovery Manager 8.4 appliance generates a self-signed SSL certificate when the appliance first boots. The Site Recovery Manager 8.4 self-signed certificate expires after five years from the first boot of the appliance.

If you upgrade from Site Recovery Manager 8.3 to Site Recovery Manager 8.4, the self-signed certificate is valid for one year only. To increase the certificate validity to five years, you must generate a new self-signed certificate.

You can also provide a custom SSL/TLS certificate that is signed by a certificate authority. If you use a custom SSL/TLS certificate, the certificate must meet certain requirements to work with Site Recovery Manager.

Note: For information about how Site Recovery Manager authenticates with vCenter Server, see Site Recovery Manager Authentication.