CLI can encrypt communication between the client and server using Transport Layer Security (TLS) protocols. CLI provides options to control whether TLS encryption is used and the level of server certificate verification. It also allows applications to fall back to non-TLS connection types when connecting to servers that do not support TLS, or where TLS is disabled.
A self-signed certificate is not recommended for use in production environments.