CA Certificate File Name

When the agent is configured to validate server certificates (Server Certificate Trust is false), set this property to the file name that contains a certificate or chain of certificates.

The file should be PEM encoded. For example:

com.forgerock.agents.config.cert.ca.file = /opt/certificates/openam_ca.pem

com.sun.identity.agents.config.trust.server.certs = false

Set this property only when the agent is using OpenSSL libraries. For agent using the Windows built-in Secure Channel API, add the appropriate certificates to the Windows certificate store.

Default: Empty

Property name

com.forgerock.agents.config.cert.ca.file

Property aliases

com.forgerock.agents.config.cert.ca.file (since 4.x)

Type

String

Bootstrap property

Yes

Required property

No

Restart required

No