Upload a ROOT CA certificate for origin server validation

Upload a ROOT CA certificate for validating your origin server.

If you want the EAA connector to do validation of the origin server for your directory service, web server hosting HTTPS applications, RDP server hosting the RDP application, you need to upload a root CA certificate with the full bundle of all the subordinates. All communication between the EAA connector and the origin server is done with TLS protocol, preventing man-in-the-middle (MITM) attacks.

To upload a ROOT CA certificate to EAA:

How to

  1. Log in to the Enterprise Application Access (EAA) Management Portal.
  2. From the top menu bar click System > Certificates. Click Add certificate.
  3. In the Name field, enter a unique name for the certificate.
  4. In the Add Certificate section, and select Certificate Authority (CA)
    Note: Do not use Manually or Via file upload options for adding ROOT CA certificate.
  5. Click Choose File to locate and select the ROOT CA certificate file with the full bundle.
  6. Click Save changes.

Next steps

For assigning the certificate to the directory origin server see Add or edit a directory (STEP 8)

For assigning the certificate to the Web application (HTTPS) origin server see Configure access parameters for an application (STEP 5)

For assigning the certificate to the RDP origin server see Configure and deploy a remote desktop application (STEP 3)