Using "Manage Certificates" for SSL Certificates

The gateway is designed to trust only certificates added through the task. When you add a new certificate, the guides you through the steps to collect all the pertinent information. Some things to note about the wizard:

gateway83

The CA API Gateway is designed to trust only certificates added through the Manage Certificates task. When you add a new certificate, the Add Certificate Wizard guides you through the steps to collect all the pertinent information. Some things to note about the wizard:

In step 1, specify how to obtain the certificate. The wizard offers five different ways to retrieve the certificate.

In step 3, specify how the certificate will be used. For standard back-end connections, the first three options provide the best coverage. They also apply for certificates being used in a Federated Identity Provider. The last two options are used for SAML-specific Federated Identity Providers and general SAML validation.

In step 4, configure the validation options. Note that "Verify Hostnames for Outbound SSL Connections" is available only if either of the "outbound" options in step 3 is selected.

Importing a Certificate

Another way to add certificates to the trusted list is using the Import
button in Manage Certificates. Use this option to go directly to a file stored on a shared or location location. The Gateway accepts PEM/BASE64 x.509 or DER encoded x.509 certificates from a PKCS#12 keystore.

For more information, see Import a Certificate.

Manage Certificates

Add Certificate Wizard

Import a Certificate

Working with SSL Certificates

Certificate Validation/Revocation Checking

Content feedback and comments

CA API Gateway 9.1

Using "Manage Certificates" for SSL Certificates