How to add Certificate Authority file in CentOS 7

I am trying to add certificate Authority (CA) file name - ca.crt to /etc/SSL/certs,

I copied my ca.crt file to /etc/pki/ca-trust/source/anchors/ and run the command below;

update-ca-trust extract
After that I checked /etc/pki/ca-trust/extracted/openssl/ file, but I didn’t find my CA.

I am not able to figure out what may be the problem.

What am I doing wrong and how can I fix it?

Hi Xavier874

welcome to IW forums

I am sorry, do you mean you want to install SSL (LE is available)

if you mean you want to add your own CA, then this should work I believe

Many thanks


SSH into server and run as root or sudo

update-ca-trust enable

copy certificates to trust as CA’s to the following folders

/etc/pki/ca-trust/source/anchors/ note - non-overridable

/usr/share/pki/ca-trust-source/ - note overridable

update-ca-trust extract


  • [B]add[/B] it as a new [B]file[/B] to directory /etc/pki/[B]ca[/B]-trust/source/anchors/
  • run update-[B]ca[/B]-trust extract. [/LIST]