Certificates in Management and Security Server generally identify a client or server. (Client certificates can identify individuals.)
During authentication, Entity A presents a certificate to Entity B, which checks the signature against its store of trusted certificates. If the certificate or its root is trusted, the transaction proceeds. If not, Entity B may either reject the transaction or present Entity A's user with a warning.
Server certificates. The need for server certificates depends on the security settings that are used for your terminal sessions:
If you use TLS/SSL security, the Host needs server certificates.
If you use the Security Proxy Server, both the Management and Security Server and the Security Proxy need server certificates.
Use the Certificates panel to generate and apply a self-signed certificate for Management and Security Server or to import a signed client certificate to share.