---
title: Using the default certificate
description: ASE ships with its default PKCS#12 keystore located at /<pi_install_path>/pingidentity/ase/config/cert/ase.store. The default certificate and SSL keys are stored in the PKCS store. You can use them to secure the ASE cluster. This task explains the steps to be completed to synchronize the SSL certificate and keys across different nodes in an ASE cluster:
component: pingintelligence
version: 5.1
page_id: pingintelligence:api_security_enforcer:pingintelligence_using_the_default_certificate
canonical_url: https://docs.pingidentity.com/pingintelligence/5.1/api_security_enforcer/pingintelligence_using_the_default_certificate.html
revdate: April 3, 2024
section_ids:
  about-this-task: About this task
  steps: Steps
---

# Using the default certificate

## About this task

ASE ships with its default PKCS#12 keystore located at `/<pi_install_path>/pingidentity/ase/config/cert/ase.store`. The default certificate and SSL keys are stored in the PKCS store. You can use them to secure the ASE cluster. This task explains the steps to be completed to synchronize the SSL certificate and keys across different nodes in an ASE cluster:

## Steps

1. Start the ASE cluster by following the steps explained in [Start ASE cluster](pingintelligence_start_ase_cluster.html). During the cluster start, cluster keys and certificates are synchronized across all the ASE nodes.

2. Once the cluster is started, restart the secondary nodes of the cluster for the changes to take effect. The instructions to restart the cluster are explained in [Restart ASE cluster](pingintelligence_restarting_ase_cluster.html).