Import Security Certificates from a TLS-Enabled Domain
Import Security Certificates from a TLS-Enabled Domain
When an Azure HDInsight cluster uses ADLS storage and the domain is configured to use TLS, you must import the certificates to the default or custom truststore file that the Informatica domain uses.
Default truststore file
If the domain is TLS-enabled and the Azure HDInsight cluster that uses ADLS as a storage uses server managed keys, you must import the Baltimore CyberTrust Root certificate to the default truststore file.
Use the
keytool
utility to import the security certificate.
The default truststore file is located in the following directory:
If the domain is TLS-enabled and the Azure HDInsight cluster that uses ADLS as a storage uses server managed keys, get the custom truststore file location from Informatica Administrator, and then import the Baltimore CyberTrust Root certificate to the custom truststore file.
Use the
keytool
utility to import the security certificate.
To get the custom truststore file location, perform the following steps:
In the Administrator tool, click the Manage tab.
Click the Services and Nodes view.
In the Domain Navigator, select the domain.
Get the custom truststore file location from the domain properties.