This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

How to add root, intermediate and server certificate to Apigee truststore?

Posted on 01-18-2021 04:11 AM
purvashidhakadp
New Member
Reply posted on --/--/---- --:-- AM

while enabling mtls between apigee and backend how to add root , intermediate and server certificate to Apigee truststore?

0 2 446
Topic Labels
0 Likes
2 REPLIES 2

Posted on --/--/---- --:-- AM
Not applicable
Reply posted on --/--/---- --:-- AM

You can upload the 3 certificates to truststore separately using ui. This needs restart of rmps for change to reflect.

You also can use management api call to upload.

Ref: https://docs.apigee.com/api-platform/system-administration/creating-keystores-and-truststore-cloud-u...

0 Likes

Posted on --/--/---- --:-- AM
dchiesa1
Staff
Reply posted on --/--/---- --:-- AM

Here is a nodejs script that uses the Administrative API for Apigee to load a key and cert into a keystore, or, alternatively, loads a single cert into a keystore (truststore).

https://github.com/DinoChiesa/apigee-edge-js-examples/blob/main/createKeystore.js

You could use this as a starting point, simplify it and expand it, to produce a script that provisions just your 3 desired certs into the truststore.

As a more elaborate example, Here is a script that provisions all of the certs in the mkcert.org repository (essentially all the certs in Mozilla's list) into a truststore in Apigee, using the API.

https://github.com/DinoChiesa/apigee-edge-js-examples/blob/main/provisionTruststoreWithMkcert.js

That might give you an idea of how to load a series of certificates into a Truststore.

0 Likes