Feature request ZBXNEXT-1263 introduces support for encrypted TLS communications between Zabbix components using PSK and certificates.

Currently, passive agents and proxies use Server configuration file parameter to determine whether the connection is coming from a trusted Zabbix server. However, with TLS in place, it is possible to make that requirement optional, so that whoever has a valid PSK or trusted certificate can be treated as a valid Zabbix server. This may especially help in dynamic environments.