...
- Open your favourite Browser
- Download new Lets's Encrypt ISRG root certificate https://letsencrypt.org/certs/isrgrootx1.pem
- Double click on downloaded CA certificates and follow import wizard. It can look like this: http://blog.didierstevens.com/2010/10/31/quickpost-adding-certificates-to-the-certificate-store/
Linux
...
Updating particular tools that might use own certificates store
- Git Bash aka Git SCM
- install the latest version https://git-scm.com/download/win
- this usually resolves issues for Visual Studio, TortoiseGit and other tools that utilise Git Bash/SCM
- TortoiseGit
- install latest version https://tortoisegit.org/download/
- in case of Git Bash/SCM presence, you must update it
- SourceTree
- install latest version https://sourcetreeapp.com/?v=win
- Visual Studio
- install latest version https://visualstudio.microsoft.com/downloads/
- in case of Git Bash/SCM presence, you must update it
Linux
Following resolutions help to make CA certs trusted for curl, wget and other system tools, also updates openjdk cacerts store.
| Note |
|---|
Remember to restart Java based applications to take new certificates in use. |
Importing CA certificate into
...
Ubuntu certificates store
...
| Code Block |
|---|
...
apt-get install ca-certificates |
...
If it still does not work, download CA certificate in PEM format into /etc/pki/ca-trust/source/anchors/ folder:
ca-certificates-java -y
wget https://letsencrypt.org/certs/isrgrootx1.pem -O /usr/local/share/ca-certificates/isrgrootx1.crt
update-ca-certificates
update-ca-certificates --fresh |
Importing CA certificate into CentOS certificates store
| Code Block |
|---|
yum install ca-certificates
|
...
wget https://letsencrypt.org/certs/isrgrootx1.pem -O /etc/pki/ca-trust/source/anchors/isrgrootx1.crt
update-cacerts |
Related articles
https://letsencrypt.org/docs/dst-root-ca-x3-expiration-september-2021/
...
| Page properties | ||
|---|---|---|
| ||
|