Add a new trusted certification authority to the Edge Gateway

Add to the Edge Gateway-specific directory

Prerequisites

Retrieve the certificate(s) from the Certification Authorities (CA) that must be recognized as trusted. The certificate format must be encoded in base 64. If necessary, rename the file extension to .pem.

Send the CAs to the relevant Edge Gateway(s) via SFTP (use a tool such as WinSCP or FileZilla on Windows), place the certificate(s) in the /tmp/ directory.

Tip

The SFTP or SSH connection to the Edge Gateway can be initiated by a cyberelements.io or cyberelements Cleanroom SSH application.

The last steps will require connecting to the Edge Gateway either via SSH or console access. Once connected, switch to root superuser mode to execute the following commands:

chmod 644 /tmp/*.pem
chown root: /tmp/*.pem
mv /tmp/*.pem /etc/ipdiva/gateway/ssl/ca/

Global addition to Debian

Prerequisites

Retrieve the certificate(s) from the Certification Authorities (CA) that must be recognized as trusted. The certificate format must be encoded in base 64. If necessary, rename the file extension to .crt.

Send the CAs to the relevant Edge Gateway(s) via SFTP (use a tool such as WinSCP or FileZilla on Windows), place the certificate(s) in the /tmp/ directory.

Tip

The SFTP or SSH connection to the Edge Gateway can be initiated by a cyberelements.io or cyberelements Cleanroom SSH application.

The last steps will require connecting to the Edge Gateway either via SSH or console access. Once connected, switch to root superuser mode to execute the following commands:

chmod 644 /tmp/*.crt
chown root: /tmp/*.crt
mv /tmp/*.crt /usr/local/share/ca-certificates/
update-ca-certificates