@Gregg Stewart Thanks for the suggestion but it seems solution is with Self-Signed certificate and interim solution can be to disable NES -> Agent secure connection
My question next would be to go for the disabling secure communication from NES to Agent since I tested it already for AIX and it works. However, my other agents (Linux and Windows) are connected to NES in secure way already. Do I need to restart all my agents? Will it cause any impact if I disable secure communication from NES to Agent for already connected and working agents?