The graph server (PGX) and client installation allows you to use your own CA-signed SSL (Secure Sockets Layer) certificate.

1. Prepare a CA-signed certificate for the graph server (PGX) and generate the Java keystore file.
2. Edit the /etc/oracle/graph/server.conf file and specify the server_keystore path to point to the keystore (generated in the previous step).
3. Optionally, set the keystore password in PGX_SERVER_KEYSTORE_PASSWORD by editing the file at /etc/systemd/system/pgx.service.
4. Reload the systemd configuration by running the following command:

   sudo systemctl daemon-reload

5. Restart the graph server.
6. Configure the client to trust the CA-signed keystore if applicable.