Skip to main content

Adding self-signed and CA certificates to trusted for HTTPS and LDAPS

To add a self-signed or CA certificate to trusted:

  1. Upload the certificate file to the main system host in PEM format. A PEM file is a text file containing one or more items in Base64 ASCII encoding. PEM files possible extensions are: .pem, .crt, .cer. In this example, a .cer file of a LDAPS certificate is used (example.cer).

  2. Execute the commands:

    sudo docker cp example.cer backend:/
    sudo docker exec backend keytool -importcert -noprompt -cacerts -storepass
    changeit -file "/example.cer" -alias "example-cer"

  3. Verify that the certificates were added to the trusted list:

    sudo docker exec backend keytool -cacerts -storepass changeit -list | grep example-cer

  4. Stop all scanning processes, or wait for them to finish. Then restart APP module service:

    sudo systemctl restart derscanner-app.service