Adding a custom CA certificate

**ccin1492** · 14-Mar-2014, 19:04

I need to add a custom ca certificate to run a specific application.

How do I add the certificate? Where do I put the file and what might I have to do after the file is in place so the system sees it?

I'm running 12.3.

Thanks in advance.

**kensch** · 14-Mar-2014, 20:19

On 03/14/2014 10:06 PM, ccin1492 pecked at the keyboard and wrote:
> I need to add a custom ca certificate to run a specific application.
>
> How do I add the certificate? Where do I put the file and what might I
> have to do after the file is in place so the system sees it?
>
> I'm running 12.3.
>
> Thanks in advance.
>
>

My crystal ball says to put the file #$%^&* POOF

It blew up trying to figure what the mystery application was. Perhaps
someone else has a better crystal ball :-)

Ken

**ccin1492** · 14-Mar-2014, 20:45

The name of the application is irrelevant.

Anyway, I think I figured it out:

I placed the certificate here: /usr/share/ca-certificates/custom/Thawte_CS_CA_G2.crt (the directory custom didn't exist, so I created it).
created file "/etc/ca-certificates.conf" and added line "custom/Thawte_CS_CA_G2.crt".
finally I ran update-ca-certificate as root.

The last step created a link to the certificate in /etc/ssl/certs.

Code:

> ll /etc/ssl/certs/Thawte_CS_CA_G2.pem 
lrwxrwxrwx 1 root users 53 Mar 14 19:25 /etc/ssl/certs/Thawte_CS_CA_G2.pem -> /usr/share/ca-certificates/custom/Thawte_CS_CA_G2.crt

Note: I'm not quite sure if the second step was necessary. Maybe someone more knowledgeable about this can comment.

Thanks.