Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. IT Analytics Data Collector Notes and Troubleshooting
  3. Data Collector Troubleshooting
  4. Adding a certificate to the Java keystore
IT Analytics Data Collector Notes and Troubleshooting

Adding a certificate to the Java keystore

Use the following steps to add an SSL certificate to the Java keystore for a Data Collector. Some servers, such as VSphere, require a certificate for connection while communicating with SSL.

Keystore file location

Note:

For the following commands, if you are not running in the default collector location (/usr/openv/analyticscollector or \Program Files\Veritas\AnalyticsCollector), substitute the appropriate APTARE_HOME in the command path.

For Windows Data Collector:

C:\Program Files\Veritas\AnalyticsCollector\java\lib\security\cacerts

For Linux Data Collector:

/usr/openv/analyticscollector/java/lib/security/cacerts

Copy the certificate file (certfile.txt) to the Data Collector. Run the following command to add the certificate:

For Windows Data Collector:

C:\Program Files\Veritas\AnalyticsCollector\java\bin\keytool -import -alias "somealias" -file certfile.txt -keystore
C:\Program Files\Veritas\AnalyticsCollector\java\lib\security\cacerts

For Linux Data Collector:

/usr/openv/analyticscollector/java/bin/keytool -import -alias "somealias" -file certfile.txt -keystore /usr/openv/analyticscollector/java/lib/security/cacerts

When prompted, enter the default password to the keystore:

changeit

The results will be similar to the following example:

Enter keystore password:
......
Certificate Shown here
......
......
......
Trust this certificate? [no]: yes

Once completed, run the following keytool command to view a list of certificates from the keystore and confirm that the certificate was successfully added. The certificate fingerprint line displays with the alias name used during the import.

For Windows Data Collector:

C:\Program Files\Veritas\AnalyticsCollector\java\bin\keytool -list -keystore 
C:\Program Files\Veritas\AnalyticsCollector\java\lib\security\cacerts

For Linux Data Collector:

/usr/openv/analyticscollector/java/bin/keytool -list -keystore 
/usr/openv/analyticscollector/java/lib/security/cacerts

Sample Linux Output

Enter keystore password:
Keystore type: JKS
Keystore provider: SUN
Your keystore contains 79 entries
digicertassuredidrootca, Apr 16, 2008, trustedCertEntry,
Certificate fingerprint (SHA1): 05:63:B8:63:0D:62:D7:5A:BB:C8:AB:1E:4B:DF:B5:A8:99:B2:4D:43
trustcenterclass2caii, Apr 29, 2008, trustedCertEntry,
Certificate fingerprint (SHA1): AE:50:83:ED:7C:F4:5C:BC:8F:61:C6:21:FE:68:5D:79:42:21:15:6E
.....

Feedback

Was this page helpful?
Previous

Collect from remote shares (File Analytics)

Next

Override default Java Heap memory (XMX) value for Data Collector utilities

Feedback

Was this page helpful?