The agent uses a self-signed certificate for internal communication, and a second certificate that is signed by the server during the agent registration process. By default, the certificates are stored in a keystore that is generated in the data folder. You can configure your own keystore for the agent to use.

1. In the agent.properties file, activate the # agent.keystore.path= and # agent.keystore.password= properties.
   Define the full path to the keystore with agent.keystore.path and the keystore password with agent.keystore.password.
2. Add the [agent.keystore.alias] property to the properties file, and set it to the alias of the primary certificate or private key entry of the keystore primary certificate.