For HTTPS (secure HTTP based on SSL) to work, an SSL certificate must be present on the OnBoard, so a self-signed certificate is automatically generated. To reduce the risks posed by weaknesses inherent in self-signed certificates, OnBoard administrators are strongly advised to replace the automatically-generated self-signed certificate with an SSL certificate from an official certificate authority (CA). See To Replace the Self-Signed Certificate With One From a Certificate Authority for the procedure.