Add a trusted CA for SSL Certs

This article describes how to add a CA as trusted CA on RHEL Based Linux Systems. This is necessary if you want to use selfsigned certificates.

Copy CA Cert

First copy the CA Cert to your server. For Example with scp.

Add CA Cert to whitelist

Next you need to add the CA Cert to the trusted white list. This is done by moving it into the corresponding directory.

[tux@server]$ mv ca_cert.cer /etc/pki/ca-trust/source/anchors/
# or
[tux@server]$ mv ca_cert.cer /etc/pki/ca-trust/source/whitelist/

Update Whitelist

For your changes to take affect you need to update your whitelist.

[tux@server]$ update-ca-trust

Check you Trust List

You can check the trusted CAs like so:

[tux@server]$ trust list --filter=ca-anchors
profile picture of the author

Jannik Rehkemper

I'm an professional Linux Administrator and Hobby Programmer. My training as an IT-Professional started in 2019 and ended in 2022. Since 2023 I'm working as an Linux Administrator.