The DualShield IIS Agent needs to be connected to the DualShield SSO Server (SSO) which in turn communicates to the DualShield Authentication Server (DAS). The communication protocol between the DualShield IIS Agent and SSO Server is HTTPS. Therefore, the DualShield SSO Server has to be trusted by the IIS Agent. If your DualShield SSO Server has a commercial SSL certificate issued by a certificate authority such as GoDaddy, DigiCert, Comodo, Sectigo, etc. then your DualShield SSO Server is automatically trusted by your DualShield IIS Agent. However, if your DualShield SSO Server has a self-signed SSL certificate, then you must import the CA certificate of your DualShield SSO Server into the local Windows certificate store on the server where the DualShield IIS Agent is installed.
...