The current system SSL certificate has changed because of the following reasons:
When the connection uses a default system certificate and a user replaces it with an external
signed certificate. it can be replaced using the mksystemcertstore -externalsigned -scope
default or older chsystemcert command.
When use cases or external plugin interfaces are using an external signed use case-specific
certificate and the user removes the same using rmsystmecertstore -scope, now the
use case shall start using the default system certificate.
When use cases or external plugin interfaces are using an internal or external signed use
case-specific certificate and a user re-installs a new external or internal signed certificate, now
the use cases shall start using the newly installed system certificate.
.
User response
If you are using a certificate that is signed by the system certificate authority, then to avoid
client-side auth errors, the system's root certificate should be exported and added to use cases or
the external client trust store.
Alternatively, if you are using a certificate signed by a third-party certificate authority,
then to avoid client-side auth errors, the external root certificate should be exported and added to
use cases or the external client trust store.