Keystores

Keystores and truststores are repositories that contain cryptographic artifacts like certificates and private keys that are used for cryptographic protocols such as TLS. BigFix Inventory uses below keystore and truststore files to enhance its security. They are located in <Installation_directory>/wlp/usr/servers/server1/resources/security directory.

key_server.p12
This keystore stores BigFix Inventory server certificate. It is managed by BigFix Inventory server. If you want to configure the server certificate, refer to the instructions provided in Configuring secure communication.
keys_bf_db.p12
This truststore stores BigFix Platform database certificates. To add new certificate to this truststore, refer to the instructions provided in Enabling the database connection encryption for Data Source.
key_bfi_db.p12
This truststore stores BigFix Inventory database certificate. To add new certificate to this truststore, refer to the instructions provided in Enabling database connection encryption for MS SQL for BigFix Inventory or Enabling database connection encryption for DB2 for BigFix Inventory depending on your database type.
keys_ilmt.p12
This keystore stores keys for reports signing, PVU table signatures validation, database passwords and token encryptions. It is manager by BigFix Inventory server.
keys_vmmdc.p12
This keystore stores keys for VM Manager password management. It is managed by BigFix Inventory server.

You can also define your own keystore, such as a SSO keystore. For more information, refer to Configuring SSO keystore passwords and encryption.

To change the keystore password, refer to the instructions provided in Configuring cryptographic keystore password and encryption.

There are more keystore files specific to other BigFix Inventory tools, such as: