The agent uses a self-signed certificate for internal communication, and a second certificate that is signed by the server during the agent registration process. By default, the certificates are stored in a keystore that is generated in the data folder. You can configure your own keystore for the agent to use.


To use your own keystore, you must perform this task before the first agent activation.


  1. In the file, activate the # agent.keystore.path= and # agent.keystore.password= properties.

    Define the full path to the keystore with agent.keystore.path and the keystore password with agent.keystore.password.

  2. Add the [agent.keystore.alias] property to the properties file, and set it to the alias of the primary certificate or private key entry of the keystore primary certificate.