About securing your Data Loss Prevention servers in the AWS cloud

Symantec Data Loss Prevention
servers communicate securely using SSL. When you deploy a detection server, the Enforce Server generates a default SSL certificate for secure server communications. While the default server certificate is suitable for pure on-premises deployments, the default certificate is not secure for hosted or cloud deployments. Someone familiar with Data Loss Prevention can use the default certificate to compromise the detection server you have deployed to AWS. This system might be vulnerable to man-in-the-middle attacks and other security threats.
You must generate a unique custom SSL certificate for your Data Loss Prevention servers to secure your Data Loss Prevention on AWS deployment.