Creating a Connector Machine Certificate from an Internal Microsoft CA

Provide a machine certificate for use with a connector in the Privileged Access Service. The connector requires a signed certificate and root of trust in order to communicate with the Delinea PAS.

Generate your own certificate using an internal certificate authority (CA). This would not require trusting the certificate on each endpoint, presuming you have other mechanisms in place to ensure that those endpoints trust their CA. As such, this may be as good as, or better than (depending on the company infrastructure) a trusted external CA.