The KeyStore tab in the Network Security panel displays the public key certificates that the Delphix Engine uses for its identity in HTTPS and DSP (Delphix Session Protocol) communication. For a selected service, the tab will show the full certificate chain starting from the end-entity certificate and ending with the root CA.
There are two methods of replacing a certificate. The key difference between the two is whether Delphix or the user is providing the key pair (public and private key). For more information see Configuring Network Settings.
Delphix Engine generates alerts when certificates in the Keystore or truststore are expired or about to expire:
- A warning level alert is generated if certificates are expiring in 60 days.
- Critical level alerts are generated if certificates expire in 14 days or have already expired.