You need a credentials trust store for SSL communication with the Sectigo API.

See Sectigo CA Properties for how to set this trust store in the CA Gateway configuration.

To create the trust store for authenticating in the Sectigo API

  1. Open a browser to the following URL.
    https://cert-manager.com/customer/<customerId>
    Where <customer-uri> matches the customer-uri value you will configure on the Sectigo CA Properties.
  2. Click the lock icon beside the URL in the address bar and export the certificate chain. 
  3. Create a trust store containing the exported certificates. For example, use the openssl pkcs12 command to create a PKCS #12 type trust store.