If you used a custom SSL certificate to enable secure communication in the previous domain, you must verify the keystore and truststore file locations after you upgrade. The upgrade process does not update these locations.
If you used the default Informatica keystore and truststore files in the previous domain, you do not need to verify the keystore and truststore file locations.
If you used RSA encryption with fewer than 512 bits to create the private key and SSL certificate, you must create new SSL certificate files. Due to the FREAK vulnerability, Informatica does not support RSA encryption with fewer than 512 bits.
The tasks that you must perform depend on the following locations where you previously stored the keystore and truststore files containing the SSL certificate files:
Default location
If you replaced the default Informatica keystore and truststore files with custom keystore and truststore files in the previous Informatica installation directory structure, copy the files to the same location in the upgraded Informatica installation directory.
The default Informatica keystore and truststore files are located in the following directory:
Another location within the previous Informatica installation directory structure
If you stored the custom keystore and truststore files in another location within the previous Informatica installation directory structure, perform the following steps:
Copy the custom keystore and truststore files to the correct location.
Update the Informatica configuration files with the location of the keystore and truststore files for each node in the domain. Run the infasetup UpdateGatewayNode or UpdateWorkerNode command to update the location.
A location outside the previous Informatica installation directory structure
If you stored the custom keystore and truststore files in a location outside the previous Informatica installation directory structure, verify that the machine that runs Informatica can access the files.