https_cacerts
|
Description
|
|
|
Type
|
String, read/write
|
|
Note
|
The file identified by this parameter consists of a list of certificates (in PEM format) of trusted certification authorities (in order to be able to check the validity of servers they have certified) and certificates of servers trusted by the application (typically using self-signed certificates that could not be certified by an external authority, see
x509newcrt). This file is used when HTTPS client connections are established to check the identity of the server unless the control parameter
https_trustsrv is set to
true. It is also required by servers that perform client authentication (see option
HTTP_CLTAUTH of server configuration
http_srvconfig): in this case the certificates are used to identify the clients.
When this parameter has not been initialised, the default location getparam("ssl_dir")+"/ca-bundle.crt" is used. This default file collecting the certificates of the major certification authorities is installed by the mmssl setup command (Section The mmssl command). |
|
Affects routines
|
|
|
See also
|
|
|
Module
|