Java agent checksum validation
You can verify the authenticity of the downloaded Site24x7 agent with SHA256 checksum validation. This ensures that the downloaded agent is credible and is not tampered with by any malicious code or software.
To verify the authenticity of the agent:
- Download the checksum file here.
- Compare the checksum value provided in the downloaded file with the downloaded agent. Follow the steps below to validate the checksum value.
- For Linux systems, execute the following command:
sha256sum apminsight-javaagent.zip
- For Windows, you can use either of the following commands.
- Open Command Prompt and execute the following command:
certutil -hashfile apminsight-javaagent.zip SHA256
- Open Windows Powershell and execute the following command:
Get-FileHash apminsight-javaagent.zip -Algorithm SHA256
- Open Command Prompt and execute the following command:
- For Linux systems, execute the following command:
- After executing the commands, you will obtain a checksum value; check that value with the one downloaded from the checksum file.
Sample Output:
If the checksum values differ, do not unzip or open the file.
Signed JAR verification:
All agent jar files (apminsight-javaagent.jar and apminsight-javaagent-api.jar) are signed with a Zoho Corp. certificate.
To verify the signature, run this command:
jarsigner -verify -verbose apminsight-javaagent.jar
You can find the file is signed by "ZOHO Corporation Private Limited" at the end of the output.
Here's a screenshot of where you can find it: