10 Sep 2021 12:36 PM - last edited on 13 Sep 2021 09:04 AM by MaciejNeumann
Hi everyone,
The security team has a Vulnerability Assessment (VA scan) on Dynatrace managed and them found SSL Certificate Cannot Be Trusted, SSL Certificate Signed Using Weak Hashing Algorithm and SSL Certificate with Wrong Hostname.
So, we would like to know about these SSL certificates. What does it mean?
Thanks
Solved! Go to Solution.
10 Sep 2021 01:20 PM
Most of your messages are referencing the 9999 port, which is used typically between OneAgent & ActiveGate. You can configure a specific certificate for it:
https://www.dynatrace.com/support/help/setup-and-configuration/dynatrace-activegate/configuration/co...
On the 443 ports, not sure if they are the Dynatrace clusters. But they only give "weak hashing algorithm" messages. It's because certainly it's using SHA-1, which is not that insecure. Should probably check with Support in this case.