Manage trusted CAs

Trusted CAs represent the list of root and intermediate CAs used to build the certificate chain for client and server certificates.

The following topics provide how-to instructions for managing trusted CAs:

Related topics:

View a trusted CA certificate

Use the following procedure to view a trusted CA certificate.

  1. Select Setup > Certificates.
  2. Click the Trusted CAs tab.
  3. The list of trusted certificates is displayed.
  4. Navigate to the page that lists the certificate to view.
  5. Click the alias from the list.
  6. The View Certificate page displays the detailed information about the certificate.

Export a trusted CA certificate

Use the following procedure to export a trusted CA certificate.

  1. Select Setup > Certificates.
  2. Click the Trusted CAs tab.
  3. Navigate to the page that lists the certificate to export.
  4. Click the alias of the certificate to export.
  5. On the View Certificate page, click Export and save the certificate file in the desired location.

Import a trusted CA certificate

A X509 certificate can be imported as a trusted CA in the form of a X509 DER or PEM encoded file.

Note SecureTransport protocol servers and services does not require restart after importing, overwriting, or deleting a trusted certificate.
  1. Select Setup > Certificates.
  2. Click the Trusted CAs tab.
  3. Click Import.
  4. Type an alias for the certificate in the Alias box.
  5. If you use an alias that is already assigned to another certificate, the imported certificate overwrites the original one. Be sure that you are entering the appropriate alias for the new certificate.
  6. Identify the certificate to import using one of the following methods:
    • Click Import certificate from file and type the file name.
    • Click Paste certificate in space below and paste the certificate text in the box.
  7. Click Import.

Delete a trusted CA certificate

Use the following procedure to delete a trusted CA certificate.

  1. Select Setup > Certificates.
  2. Click the Trusted CAs tab.
  3. Navigate to the page that lists the certificates to delete.
  4. Select the check boxes for the certificates to delete.
  5. Click Delete.
Note If an end user has a certificate issued by a trusted CA that was deleted, the user can no longer authenticate using that certificate.

Related Links