EDIT: Answered my own question but leaving this here for others. Answer: https://osquery.slack.com/archives/C235GUPH8/p1524761280000300 If your Osquery TLS server serves a TLS certificate signed by a trusted authority like Digicert do you still need to place the pub cert on endpoints and use the

--tls_server_certs=

flag?