Enabling Root Certificate Authentication for Server Identity Verification
When Huawei Cloud Astro Zero calls HTTPS requests of other services (including native services), you can enable root certificate verification to check whether the identity of the peer server (identity of the public key holder) is secure.
Prerequisites
You have obtained the root certificate of the peer service. If the peer service does not provide a root certificate and the root certificate is a standard certificate, perform the following operations to obtain it:
- Check the root certificate information.
- Open a browser and enter the third-party service address.
- Click
on the upper right corner of the page.
- Click
next to Connection is secure.
- Click
next to Certificate is valid to view the service root certificate information.
- Open the browser settings page and choose Privacy and security > Security > Manage certificates.
- In the displayed dialog box, click the Trusted Root Certification Authorities tab.
- Select the root certificate information viewed in 1 and click Export.
- Select Base64 encoding X.509(.CER)(S) to export the root certificate.
Enabling Root Certificate Verification
- Log in to the Huawei Cloud Astro Zero console and click Access Homepage. The application development page is displayed.
- In the upper left corner of the page, click
and choose Environments > Environment Configuration.
- In the navigation pane, choose User and Profile > Root Certificate.
- Click Open Root Certificate Verification. In the displayed dialog box, click OK.
Click Close Root Certificate Verification. In the displayed dialog box, click OK.
Creating a Root Certificate
- Log in to the Huawei Cloud Astro Zero console and click Access Homepage. The application development page is displayed.
- In the upper left corner of the page, click
and choose Environments > Environment Configuration.
- In the navigation pane, choose User and Profile > Root Certificate.
- Add one by uploading the root certificate of the peer service obtained in Prerequisites to Huawei Cloud Astro Zero.
After the certificate is uploaded, Huawei Cloud Astro Zero uses the uploaded root certificate to verify the service certificate when calling HTTPS requests of other services (including native services). If the verification is successful, the HTTPS request can be called. If the verification fails, the call is rejected.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot