Apply a signed certificate from a trusted Certificate Authority (CA) to the SSL VPN portal to allow users to connect securely with confidence Rationale: Having an unsigned or self signed certificate leaves connections open to man-in-the-middle attacks and could allow users to connect to untrusted servers NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Import a signed certificate from a trusted CA through the GUI System > Certificates > Import and then assign the certificate to the SSL VPN portal by going to VPN > SSL-VPN Settings and selecting the proper certificate in the dropdown for 'Server Certifcate' Default Value: Self Signed Factory installed certificate