Configuring certificates between the server and agents for HTTPS communication

To enable communication between the Cloud APM server and agents, you can configure default, custom, or self-signed certificates and then configure the agents to use HTTPS communication and the certificates.

About this task

• If you enabled HTTPS communication for agents when you installed the Cloud APM server, the agents are already configured to use HTTPS and the default certificates were created during the Cloud APM serverinstallation. The default certificates expire 10 years after the Cloud APM server is installed. If you do not want to use the default certificates or you want to update them before they expire, you can configure new certificates and update the agent configuration using one of the following procedures: Configuring a self-signed certificate or Configuring a Third-Party Root CA custom certificate for HTTPS agent communications.
• If you did not enable HTTPS communication for agents when you installed the Cloud APM server, you can choose which type of certificates you want to use and then reconfigure the agents for HTTPS communication. If you want to use the default certificates that were created by the Cloud APM server installation, follow the instructions in Configuring a default certificate to enable HTTPS communications for agents. The default certificates expire 10 years after the Cloud APM server is installed. If you do not want to use the default certificates or you want to update certificates before they expire, you can configure new certificates and update the agent configuration to use HTTPS and the new certificates using the one of the following procedures: Configuring a self-signed certificate or Configuring a Third-Party Root CA custom certificate for HTTPS agent communications.