TLS Inspection tab
The mitm CA management surface. View the collector's auto-generated CA, the chain of intermediates (since a033398), and the trust workflow for each agent host.
The CA private key never leaves the collector. The cloud only sees the public cert chain so the UI can display fingerprints + expiry.
Screenshot: TLS Inspection — certificate treedocs/public/screenshots/tls-inspection.png