Agent Manager uses the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) protocols included in the Microsoft Secure Channel (SChannel) security package to send data from Windows agents to the central computer.
Out of the box, Agent Manager uses a default self-signed certificate, installed on the central computer, for communication between the central computer and monitored Windows agents.
If you want to enable authenticated communication, you can implement your own Public Key Infrastructure (PKI) and deploy custom certificates on central computers and agents, replacing the default central computer certificate. For more information about authenticated communication, see Understanding Authenticated Communication.