Splunk AppDynamics recommends you take the following security measures to prevent tampering with the Database Agent truststore:

• Secure the truststore file through file system permissions:

  • Make the Database Agent truststore readable by any user.
  • Make the truststore owned by a privileged user.
  • Make the truststore writable only by the specified privileged user.
• Secure the Database Agent configuration files so that they are only readable by the agent runtime user and only writable by a privileged user:
  • Global configuration file: <db_agent_home>/conf/controller-info.xml