For network vulnerability scans to correctly validate SSL/TLS certificates signed by a local certification authority (CA), you have to install the root certificate on the scan node server. System scans use the same certificate store as OpenSSL.
To install the rootCA.crt certificate file on Debian or Ubuntu distributions:
-
- Run the following command to create a directory for your own trusted ca-certificates:
sudo mkdir /usr/local/share/ca-certificates/extra
-
- Copy the root certificate to the new directory:
sudo cp rootCA.crt /usr/local/share/ca-certificates/extra/
Make sure that the certificate has the .crt extension.
-
- Run the following command to update the system certificates:
sudo update-ca-certificates
https://kbs.bestantivirus.co.uk/wp-admin/post.php?post=30051&action=edit
(Visited 21 times, 1 visits today)