Prev Next

Advanced SSL - Adding Trust to a Self-Signed Certificate

A self-signed SSL certificate can be signed with your own Certificate Authority (CA). This allows trust to be added to clients to avoid security warnings. The instructions for adding a CA to a client vary by operating system or browser used.

See Add Trust with a Certificate Authority (CA) for instructions on generating a CA and using it to sign server certificates.

WebEA uses PHP and cURL to communicate with a Pro Cloud Server. To enable PHP/curl to trust a new CA:

  • Add/edit 'curl.cainfo' in php.ini to point to either a single root CA certificate or a CA bundle file (this is multiple concatenated crt files)

    [curl]
    ; A default value for the CURLOPT_CAINFO option. This is required to be an
    ; absolute path.
    curl.cainfo="C:\xampp\php\MyCompanyCA.crt"
  • Restart Apache/PHP