cancel
Showing results for 
Search instead for 
Did you mean: 

Import the Root CA certificate of the end-entity server certificate

former_member519516
Participant
0 Kudos
1,429

Hi All,

I am training with access to an external web service through the WSDL. I found an open web service with open API.

WSDL

Description of the service (sorry, this is not in English)

When I connecting with this method, an error appears peer certificate (chain) is not trusted. I don’t understand what is required of me, because it is an open web service.

While calling a web service I am getting below Error.

500 SSL Peer Certificate Untrusted

Using the this WIKI page, I found a certificate for the CA called

CN=Yandex CA, OU=Yandex Certification Authority, O=Yandex LLC, C=RU

It's Troubleshooting Guide says how to find the certificate you need. But it doesn't say how to import a certificate.

I found this

CN=Yandex CA, OU=Yandex Certification Authority, O=Yandex LLC, C=RU

but what should I do next? How i do import the Root CA certificate of the end-entity server certificate?

I found tcode STRUST, but did not understand what to do. When Iadding a certificate, it need to upload some file. I do not have such a file. I don’t know where to download it. Tell me how to import the certificate.

Sorry to ask simple and stupid questions. Thanks for any help.

Accepted Solutions (0)

Answers (2)

Answers (2)

Ideally this should work

Importing the CA's Root Certificate From the File System

If the CA's public-key certificate is located in the file system:

  1. In the certificate section, choose This graphic is explained in the accompanying text Import certificate.
  2. The
Import Certificate dialog appears.
  • Enter the corresponding file name from the file system.
  • Select the certificate's file format.
  • Note

    If you are not sure which format to select, open the certificate in a text browser that does not use formatting, for example, Notepad. If the contents are readable (although encoded), then the format is Base 64. Otherwise the format is binary.

  • Choose Enter.
  • The certificate appears in the certificate maintenance section.
  • Choose This graphic is explained in the accompanying text Add to Certificate List.
  • The certificate is added to the certificate list for the PSE displayed in the PSE maintenance section.
  • Save the data.
  • If not, follow the below process

    Strust>Certiifcate>Database>Create(F5)

    Give New CA Details(Starts with Z) with Category Root CA and save it

    Now import the certificate and Click on Export > Select Database

    Trust Center : Root CA name created Above
    Category : Root CA and save it .


    former_member519516
    Participant
    0 Kudos

    The basic administrator helped me. He added a certificate chain.