The Site Recovery Manager server endpoint certificate establishes the identity of Site Recovery Manager Server to clients. The endpoint certificate secures the communication between the client and Site Recovery Manager Server.

The Site Recovery Manager 8.6 appliance generates a self-signed SSL certificate when the appliance first boots. The Site Recovery Manager 8.6 self-signed certificate expires after five years from the first boot of the appliance.

You can also provide a custom SSL/TLS certificate that is signed by a certificate authority. If you use a custom SSL/TLS certificate, the certificate must meet certain requirements to work with Site Recovery Manager.

Note: For information about how Site Recovery Manager authenticates with vCenter Server, see Site Recovery Manager Authentication.