Configuring certificate authority certificates
If the service that you are connecting to uses the transport layer security (TLS) communication protocol and is not secured with a certificate that is issued by a certificate authority (CA) that is trusted by default by Maximo® Application Suite, you must provide the certificate of the CA that issued the service's certificate. Since the CA might use intermediate CAs, you can provide more than one certificate.
If you configured trustDefaultCAs to false in the custom resource (CR), you must provide the CA for each service that you are connecting to.
About this task
Services that Maximo Application Suite might connect to include, MongoDB, Kafka, Db2®, Watson Studio, Object Storage and SMTP. For more information, see Prerequisite software.
- The name of the certificate issuer.
- The name of the subject, such as the organization, that the certificate is issued to.
- The start and end dates of the certificate's validity period. If the validity of any certificate that you provide expires soon, a warning message appears.
Procedure
You can automatically retrieve or manually add certificates.