Hi,
on a Leap 15.1 system, for a VPN connection I use a certificate that was located at /etc/ssl/certs/Deutsche_Telekom_Root_CA_2.pem.
Now this is missing (and of course, I can no longer connect to the VPN network).
On another, second installation the certificate is still present, so I can probably trace this back to an update that was recently made on the first system, but not on the second one.
Has this certificate been delete for some reason?
Can it be restored?
Thanks in advance for any help.
Best regards
B
Content of /etc/ssl/certs is rebuilt every time update-ca-certificates is executed, which happens during some updates. Copy your certificate into /etc/pki/trust/anchors and execute update-ca-certificates. This will ensure it is available in /etc/ssl/certs now and in the future.
Thanks for the quick help, this seems to work.
Best regards
B
update: It seems to work even without calling update-ca-certificates. I have observed that just copying the certificate into /etc/pki/trust/anchors is sufficient that the file is also available in /etc/ssl/certs. This is not a soft link, as ls -l shows.
Any ideas how this happens?
Best regards
B
update-ca-certificates is triggered by /usr/lib/systemd/system/ca-certificates.path. Actually ca-certificates.service is enabled by default which means that on every reboot /etc/ssl/certs is completely rebuilt.