Adding a self-signed certificate to the trusted root store
Toolbox App trusts the certificates that you store in the OS system storage.
If your environment requires you to use a self-signed proxy certificate to access Internet access or other reasons, add it to the trusted root storage in your OS. If you have multiple certificates, add all of them to the trusted root storage.
To add a self-signed certificate to the trusted root store, use one of the following ways:
Windows
Manual
- Double-click the certificate file to start the import wizard.
- Select a certificate store location. This location determines who will trust the certificate – either only the current Windows user or everyone on the machine. Click Next.
- Select Place all certificates in the following store, then click Browse, and select Trusted Root Certification Authorities. Click OK then click Next.
- Click Finish.
- Click OK to confirm the warning dialog.
Automated
Requires to run a terminal as administrator
certutil -addstore root <Path to your certificate>
macOS
Manual
-
Open the Keychain Access app and select either the System keychain.
-
Drag the certificate file onto the Keychain Access app.
-
If you’re asked to provide a name and password, enter the name and password for an administrator user on this computer.
-
Select a certificate from the Certificates lists, then double-click a certificate.
-
Next to Trust, click the arrow to display the trust policies for the certificate.
-
Choose the new trust settings from the pop-up menus to override the trust policies.
Automated
sudo security add-trusted-cert -d -p ssl -p basic -k /Library/Keychains/System.keychain <Path to your certificate>
Linux
Manual
- Click Activities and open Terminal.
-
Copy the certificate file to a folder appropriate for your Linux distribution.
Ubuntu or Debian
sudo cp <Path to your certificate> /usr/local/share/ca-certificates
Red Hat
sudo cp <Path to your certificate> /etc/pki/ca-trust/source/anchors
Arch Linux
sudo cp <Path to your certificate> /etc/ca-certificates/trust-source/anchors
-
Update the system-wide certificate store with the following command:
Ubuntu and Debian
sudo update-ca-certificates
Red Hat and Arch Linux
sudo update-ca-trust
-
Check the trusted certificate store after installation. Use the following command:
trust list
At the end of the list, you should see your certificate.
Please sign in to leave a comment.