The public key, the certificate, and the keystore of VMware Aria Operations for Logs are located on the VMware Aria Operations for Logs virtual appliance.

Note: All security-related resources are accessible by the root account. Protecting this account is critical to the security of VMware Aria Operations for Logs.
Description Location
The keystore for user-facing end points such as APIs and web interfaces.
  • Default mode:

    /usr/lib/loginsight/application/3rd_party/apache-tomcat-*/conf/keystore

  • FIPS mode:

    /usr/lib/loginsight/application/3rd_party/apache-tomcat-*/conf/keystore.bcfks

The keystore for node to node communication.

Default mode:

  • /usr/lib/loginsight/application/etc/truststore
  • /usr/lib/loginsight/application/etc/3rd_config/keystore

FIPS mode:

  • /usr/lib/loginsight/application/etc/truststore.bcfks
  • /usr/lib/loginsight/application/etc/3rd_config/keystore.bcfks
The default certificate for VMware Aria Operations for Logs. /usr/lib/loginsight/application/etc/certs/default.pem
The cluster certificate for VMware Aria Operations for Logs. /usr/lib/loginsight/application/etc/certs/cluster.pem
Note:

The cluster certificate is generated only when you add a custom certificate to VMware Aria Operations for Logs.