Main Content


Use the certificate authority store provided by the system




x509-use-system-store specifies that the server instance uses the system provided certificate authority (CA) store. By default, the server uses the file /etc/ssl/certs/ca-certificates.crt as trusted CA store and searches for trusted certificates under the folder /etc/ssl/certs. You can override these locations by setting the environment variables SSL_CERT_FILE and SSL_CERT_DIR.


  • For on-premises server instances created using the command line, update this server configuration property in the main_config server configuration file.

  • For on-premises server instances created using the dashboard and for server deployments in the cloud, use the dashboard and cloud dashboard, respectively, to update the server configuration property.

Configure Using Command Line

Use System CA Store

In the main_config file, enable the x509-ca-file-store property to the following:


Configure Using Dashboard

Use System CA Store

In the dashboard, in the Settings tab of your server instance, under SSL, select the X509 Use System Store property.