Big Data Management Administrator Guide > Configuring Access to an SSL/TLS-Enabled Cluster > Import Security Certificates to Server
  

Import Security Certificates to Server

When you use an HDInsight cluster with ADLS storage and the domain is configured to use TLS, you must import the certificates to the truststore file in Informatica server.
Import security certificates to a TLS-enabled default or a custom domain.
Default TLS
If the domain is TLS-enabled and the ADLS cluster uses server managed keys, import the Baltimore CyberTrust Root certificate file to the following default location using the keytool:
<Informatica installation home>/services/shared/security/infa_truststore.jks
Custom TLS
For a custom TLS domain, get the location from Informatica Administrator, and then import the Baltimore CyberTrust Root certificate file to the infa_truststore location.
  1. 1. In the Administrator tool, click the Manage tab.
  2. 2. Click the Services and Nodes view.
  3. 3. In the Domain Navigator, select the domain.
  4. 4. Get the location for the custom TLS-enabled domain from the Domain Properties.
You can download the certificates from https://www.digicert.com/digicert-root-certificates.htm.
For more information about downloading the certificates, see https://docs.microsoft.com/en-us/azure/java-add-certificate-ca-store.