Help Center/ Huawei Cloud Astro Zero/ User Guide (Low-Code)/ Huawei Cloud Astro Zero Management Center/ Managing Users and Permissions/ Enabling Root Certificate Authentication for Server Identity Verification
Updated on 2025-08-15 GMT+08:00
View PDF
Share

Enabling Root Certificate Authentication for Server Identity Verification

When Huawei Cloud Astro Zero calls HTTPS requests of other services (including native services), you can enable root certificate verification to check whether the identity of the peer server (identity of the public key holder) is secure.

Prerequisites

You have obtained the root certificate of the peer service. If the peer service does not provide a root certificate and the root certificate is a standard certificate, perform the following operations to obtain it:

  1. Check the root certificate information.
    1. Open a browser and enter the third-party service address.
    2. Click on the upper right corner of the page.
    3. Click next to Connection is secure.
    4. Click next to Certificate is valid to view the service root certificate information.
  2. Open the browser settings page and choose Privacy and security > Security > Manage certificates.
  3. In the displayed dialog box, click the Trusted Root Certification Authorities tab.
  4. Select the root certificate information viewed in 1 and click Export.
  5. Select Base64 encoding X.509(.CER)(S) to export the root certificate.

Enabling Root Certificate Verification

  1. Log in to the Huawei Cloud Astro Zero console and click Access Homepage. The application development page is displayed.
  2. In the upper left corner of the page, click and choose Environments > Environment Configuration.
  3. In the navigation pane, choose User and Profile > Root Certificate.
  4. Click Open Root Certificate Verification. In the displayed dialog box, click OK.

    Click Close Root Certificate Verification. In the displayed dialog box, click OK.

Creating a Root Certificate

  1. Log in to the Huawei Cloud Astro Zero console and click Access Homepage. The application development page is displayed.
  2. In the upper left corner of the page, click and choose Environments > Environment Configuration.
  3. In the navigation pane, choose User and Profile > Root Certificate.
  4. Add one by uploading the root certificate of the peer service obtained in Prerequisites to Huawei Cloud Astro Zero.

    After the certificate is uploaded, Huawei Cloud Astro Zero uses the uploaded root certificate to verify the service certificate when calling HTTPS requests of other services (including native services). If the verification is successful, the HTTPS request can be called. If the verification fails, the call is rejected.

Parent Topic: Managing Users and Permissions