Recently our security team has been on the lookout for untrusted certificates and notified the BigFix team of a number of untrusted certificates. I am aware of the issues concerning security scanners reporting BigFix certs as self-signed and untrusted, but one of the certificates that came up in the audit was a self-signed SSL cert from the root database. We are running a MS SQL Server database on the same box as the root server. Can this SSL certificate be replaced without breaking anything on the BigFix side? We are also running Compliance and Inventory. I know the certificate could be replaced with a trusted one from the SQL Server side of things, but I don’t know if there will be any trust issues from BigFix if I do so.