Configuring PKI Certification for Agents
For additional security, agents can be configured to authenticate through PKI certificates. Use the following procedure to configure each agent that you want to authenticate this way.
Note: No corresponding users are created in Deployment Automation when agents authenticate through PKI certificates. For information on user authentication through PKI certificates, see Creating Users.
To configure agents to authenticate using PKI certificates:
- Navigate to the agent's
confdirectory. For example:
C:\Program Files (x86)\Micro Focus\Deployment Automation Agent
- Using an appropriate editor such as the Oracle Java
keytoolutility, remove the default key from the agent's
- Add the client certificate issued by your CA for this particular
agent to the agent's
- Update the
conf/installed.propertiesin the agent's
confdirectory to have the correct passwords for the
agent.keystorefile and for the key itself (
locked/agent.keystore.key.pwdrespectively). Passwords can be entered unencrypted, and will be encrypted the next time the agent starts.