while enabling mtls between apigee and backend how to add root , intermediate and server certificate to Apigee truststore?
You can upload the 3 certificates to truststore separately using ui. This needs restart of rmps for change to reflect.
You also can use management api call to upload.
Here is a nodejs script that uses the Administrative API for Apigee to load a key and cert into a keystore, or, alternatively, loads a single cert into a keystore (truststore).
https://github.com/DinoChiesa/apigee-edge-js-examples/blob/main/createKeystore.js
You could use this as a starting point, simplify it and expand it, to produce a script that provisions just your 3 desired certs into the truststore.
As a more elaborate example, Here is a script that provisions all of the certs in the mkcert.org repository (essentially all the certs in Mozilla's list) into a truststore in Apigee, using the API.
https://github.com/DinoChiesa/apigee-edge-js-examples/blob/main/provisionTruststoreWithMkcert.js
That might give you an idea of how to load a series of certificates into a Truststore.
User | Count |
---|---|
2 | |
1 | |
1 | |
1 | |
1 |