Import certificates into PingAccess to establish anchors used to define trust to certificates presented during secure HTTPS connections.
Outbound secure HTTPS connections, such as communication with PingFederate for
Certificates used by PingAccess can be issued by a
The following formats for X.509 certificates are supported:
- Base64 encoded DER (PEM)
- Binary encoded DER
A Certificate Group is a trusted set of anchor certificates used when authenticating outbound secure HTTPS connections. The Java trust store group contains all the certificates included in the keystore located in the Java installation at $JAVA_HOME/lib/security/cacerts. This group of certificates contains well-known, trusted CAs. If you are connecting to sites that make use of certificates signed by a CA in the Java trust store, you do not need to create an additional trusted certificate group for that CA. You cannot manage the Java trust store group from the PingAccess administrative console. Expand a section for steps to import and manage certificates and create and manage trusted certificate groups.