SSL Scanner
Trusted Certificate Authorities
The Trusted Certificate Authorities section looks like this:
This section provides the list of Trusted Certificate Authorities (CAs). Also provided is a list of known CAs, from which you can select CAs to include them in the list of trusted CAs. When including a CA in this list, you can configure it as trusted or not trusted.
If a CA has been included in the list of trusted CAs as not trusted, certificates issued by it will be explicitly forbidden, i. e. will also not be trusted. This is indicated in status messages referring to a certificate.
If a CA is not included in the list at all, certificates issued by it may be implicitly forbidden, which is also indicated in status messages.
Note that besides this list, which is configured only for a particular policy, there is also the list of Global Trusted Certificate Authorities. If a CA does not appear in the list of trusted CAs configured here, the settings configured for the global list will apply.
To select a CA from the list of known CAs and add it to the list of trusted CAs, use the area labeled:
•Select CA
Select the CA you want to add to the list of trusted CAs from the
If this list is empty, it means that all known CAs have been included in the list of trusted CAs, either as trusted or not trusted.
The addition of a CA here will be valid only under the policy you are cur- rently configuring.