-->

DEVOPSZONES

  • Recent blogs

    How to Add trusted root certificates to the server

    How to Add  trusted root certificates to the server

    How to Add  trusted root certificates to the server

     

    You must manually add a trusted root certificate if you want to send or receive messages that are signed by root authorities but these authorities are not installed on the server.

    To add or remove trusted root certificates from/from a server, use the subsequent steps.

    Linux (Ubuntu, Debian)

    FunctionMethod
    Add
    1. Copy your CA to dir /usr/local/share/ca-certificates/
    2. Use command: sudo cp foo.crt /usr/local/share/ca-certificates/foo.crt
    3. Update the CA store: sudo update-ca-certificates
    Remove
    1. Remove your CA.
    2. Update the CA store: sudo update-ca-certificates --fresh


    Linux (CentOs 6/7/Amazon Linux 2)

    FunctionMethod
    Add
    1. Install the ca-certificates package: yum install ca-certificates
    2. Enable the dynamic CA configuration feature: update-ca-trust force-enable
    3. Add it as a new file to /etc/pki/ca-trust/source/anchors/: cp foo.crt /etc/pki/ca-trust/source/anchors/
    4. Use command: update-ca-trust extract



    No comments