Custom Token Certificates

JFrog Installation & Setup Documentation

Content Type
Installation & Setup

Token certificates are used for signing and validating tokens. The certificates essentially a key pair comprised of a private key and root certificate: the private.key is used to sign access tokens and the root.crt is the matching public key, used to verify the token's signatures.

The JFrog Platform enables users to use token certificates, also called custom certificate keys. This section details how to create custom token certificates, and how to load them via bootstrapping files.


The custom token certificate must meet the following prerequisites.

  • The certificate must match the provided private key.

  • The certificate must be valid for the next 7 days at least.