Views:
IWSVA still gets the old certificates because “Spoofed” certificates generated by iwssd are stored in the var/iwss/https/certstore/certificates memory cache. 
Before iwssd generates a new “Spoofed” certificate to spoof the identity of the destination server to the client, it checks the “Spoofed” certificate cache. If it exists, the certificate in the cache is used to establish SSL connection to client.
To resolve the issue, clear the cached certificates:
  1. Log in as root on CLI.
  2. Stop HTTP scanning daemon using the command:
    /var/iwss/S99ISproxy stop
  3. Navigate to the /var/iwss/https/certstore/certificates folder.
  4. Remove all the PEM files using the command:
    rm -f *.pem
  5. Start HTTP scanning daemon using the command:
    /var/iwss/S99ISproxy start
Keywords: default certificate appears,iwss.trend ,enable self-signed cert,clear certificate cache