Key Pair Bootstrap File Configuration (JPD)
Place ca.crt, ca.private.key, root.crt, and private.key in $JFROG_HOME/bootstrap/etc/access/keys for token certificate initialization.
During certificate initialization, certificates and private keys are read from the following paths, if present:
<VAR>/bootstrap/etc/access/keys/ca.crt- certificate authority PEM<VAR>/bootstrap/etc/access/keys/ca.private.key- certificate authority private key PEM<VAR>/bootstrap/etc/access/keys/root.crt- token issuer PEM<VAR>/bootstrap/etc/access/keys/private.key- token issuer private key PEM
Implications of Creating and Changing the Key Pair
Loading new token certificates effectively revokes all previously generated tokens. To reset certificates while maintaining the validity of existing tokens, copy the old
root.certinto the trusted directory:/var/etc/access/keys/trusted. See Resetting Token Certificates.
Updated 14 days ago