The agent uses a self-signed certificate for internal communication, and a second certificate that is signed by the server during the agent registration process. By default, the certificates are stored in a keystore that is generated in the data folder. You can configure your own keystore for the agent to use.

Important: To use your own keystore, you must perform this task before the first agent activation.


  1. In the file, activate the # agent.keystore.path= and # agent.keystore.password= properties.
    Define the full path to the keystore with agent.keystore.path and the keystore password with agent.keystore.password.
  2. Add the [agent.keystore.alias] property to the properties file, and set it to the alias of the primary certificate or private key entry of the keystore primary certificate.