Managing trusted certificates

You can set the list of certificates that will be trusted by the application. The list of trusted certificates is used when scanning encrypted connections.

You can manage the trusted certificate list from the command line.

To add a certificate to the trusted certificate list, run the following command:

kesl-control [-N] --add-certificate <path to certificate>

where:

<path to certificate> is the path to the certificate file that you want to add (PEM or DER format).

To remove a certificate from the trusted certificate list, run the following command:

kesl-control [-N] --remove-certificate <certificate subject>

To view the list of trusted certificates, execute the following command:

kesl-control [-N] --list-certificates

The following information is displayed for each certificate:

Page top