You must configure the Collector Manager to enable communication between Sentinel and the central computer.
Sentinel Agent Manager is installed with a built-in self-signed certificate. You can use either this certificate or import a custom certificate to establish communication. If you use a built-in certificate, you must import this certificate to Sentinel.
If you want to use a custom certificate, you must configure the certificate in Sentinel Agent Manager and import this certificate into Sentinel.
To configure the Collector Manager:
In Sentinel Agent Manager, do the following:
Select Agent Manager Console > Configuration Wizard > Collector Manager Configuration.
In the Server name field, specify the IP address or DNS name of the Sentinel server.
In the Port number field, specify the port number of the Agent Manager Connector.
Select SSL or TCP from the Connection type drop-down.
Click Set Client Certificate.
The details of the built-in certificate are displayed by default.
(Conditional) To use a custom certificate:
Specify the subject of the certificate in the Subject field.
IMPORTANT:If you want to configure a strict authentication policy for the certificate in Sentinel, do the following:
Ensure that there are no spaces between the key, =, and the value.
If there are multiple attributes, separate the attributes using a comma followed by a space.
For example,
CN=sam.mf.example.com, C=US
Specify the location of the certificate.
Specify the name of the trust store.
Import the certificate into Sentinel:
Do one of the following:
From Sentinel Main, go to Collection > Event Source Servers > Agent Manager Servers > Client Authentication and select Strict.
From Sentinel Control Center, select Agent Manager Event Source Server > Edit > Security > Strict.
Import the certificate.