To secure the communication with the Content Platform Engine server, you need to deploy on the IBM® Content Search Services server either a self-signed certificate or a certificate that is signed by an external third-party Certificate Authority (CA). You do not need to deploy both types of certificates.