Managing Trusted HTTPS Certificates

When configuring a token issuer to use Custom endpoint trust, the certificates must be valid. The configuration validation checks if the provided certificates are sufficient to establish the necessary trust when Grid calls the well-known metadata URI and the JWKS URI specified in the metadata. See Token issuer validation.

To manage the trust:

  1. From the Grid Management Pages, select Security > Token Issuers.
  2. On the left side of the page, click the name of the token issuer to edit.
  3. Click Manage Trusted HTTPS Certificates.
  4. Add a new certificate, Click Import from File.
  5. Select the certificate file to add.
  6. Click Next.
  7. In the Import Certificate dialog box, review the certificate and click Import.

    The new certificate validation does not happen until after the page is refreshed.

    Note: It is not possible to import an expired certificate.
  8. Select the invalid certificate and click Delete to remove them.
    Caution: 
    Select only certificates with a red warning icon and not the ones marked with a green check mark.
  9. Click Close.