Does the portal site automatically use the web server's certificate?

The portal site does indeed contain its own self-signed certificate. This is important because a self-signed certificate allows the portal to establish secure HTTPS connections without the immediate need for a certificate issued by a trusted certificate authority (CA). This setup is particularly useful for initial testing or during the development phase, where purchasing a CA-signed certificate may not be necessary.

While it is possible to configure a portal site to use an externally issued certificate later, in its default state, it does not automatically use the web server's certificate. Instead, it relies on its own self-signed certificate until a user chooses to replace it with a valid certificate from a trusted CA. This clarity regarding the default behavior of portal sites' certificates helps users understand how to manage security effectively from the outset.