If you want to use your own certificate when connecting by HTTPS to an Enforce console, you can take advantage of Java "keytool" utility. You can find a lot of guidelines on the internet. One of them is following:
https://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html
Java keytool utility can be found at <Symantec DLP installation dir>\jre\bin,
Tomcat .keystore file located at <Symantec DLP installation dir>\Protect\Tomcat\conf.
Default password for the keystore is "protect".
And don't forget to set the time period for a certificate.