If you continue to use the self-signed certificate, you must replace it when it expires, with either:
- A third-party (public or private) CA-issued certificate
- Another self-signed certificate that is generated on the cluster
The following folders are the default locations for the server.crt and server.key files.
- TLS certificate: /usr/local/apache2/conf/ssl.crt/server.crt
- TLS certificate key: /usr/local/apache2/conf/ssl.key/server.key