Skip to main content
Chat with Biamp tech support
Biamp Cornerstone

Extending the Trusted CA List for Evoko Home

  1. Last updated
  2. Save as PDF

After you download the Certified Authority (CA) certificate, you can add it to the trusted CAs list by setting the NODE_EXTRA_CA_CERTS  environment variable with the location of the CA certificate. 

About

When you use an internal CA certificate, you must extend the trusted certificates list by using the NODE_EXTRA_CA_CERTS environment variable with the location of the CA certificate to add the certificate as a trusted CA. You can then start or restart the Evoko Home (ERM) service. 

In this example we will use OpenSSL to convert certificate to .pem format – depending on your downloaded certificate you might need - or - not need to do this. 

Procedure 

Choose the following steps depending on the operating system to set the CA certificate location to the environment variable NODE_EXTRA_CA_CERTS

Windows

If you are using a Windows operating system, you must perform the following actions on the command prompt: 

  1. Run the following command to convert the CA certificate to a PEM format:
    1. openssl x509 -in <CAcertificate.crt> -out <CustomName>.pem -outform PEM 
    2. For example, openssl x509 -in mycert.crt -out mycert.pem -outform PEM 
  2. Create the environment variable NODE_EXTRA_CA_CERTS by performing the following actions:
    1. Open the Environment Variables window. 
    2. Click New from the System variables section. 
    3. The New System Variable Window is displayed.
      • Screenshot 2024-08-14 at 10.08.19 AM.png
        1. Enter NODE_EXTRA_CA_CERTS in the Variable name field. 
        2. Enter the location of the PEM certificate in the Variable value field. 
        3. Click OK

Linux

If you are using Linux operating system, you must perform the following actions on the terminal window:

  1. Run the following command to convert the CA certificate to a PEM format: 
    1. openssl x509 -in <CAcertificate.crt> -out <CustomName>.pem -outform PEM 
    2. For example, openssl x509 -in mycert.crt -out mycert.pem -outform PEM 
  2. Run the following command to add the NODE_EXTRA_CA_CERTS variable to your environment variables list: 
    1. export NODE_EXTRA_CA_CERTS= <file path of PEM file> 
    2. For example, export NODE_EXTRA_CA_CERTS= /opt/myData/cacert.pem 

Results

You have extended the trusted CA certificates list that you want to trust with the NODE_EXTRA_CA_CERTS environment variable. 

  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    How-to
    Stage
    Final
  2. Tags
    This page has no tags.