2 Copyright (C) The Arvados Authors. All rights reserved.
4 SPDX-License-Identifier: CC-BY-SA-3.0
9 Installing the root certificate into your web browser will prevent security errors when accessing Arvados services with your web browser.
13 # Go to "Settings → Privacy and Security → Security → Manage Certificates" or enter @chrome://settings/certificates@ in the URL bar.
14 # *Click on the "Authorities" tab* (it is not selected by default)
15 # Click on the "Import" button
16 # Choose @{{ca_cert_name}}@
17 # Tick the checkbox next to "Trust this certificate for identifying websites"
19 # The certificate should appear in the list of Authorities under "Arvados"
23 # Go to "Preferences → Privacy & Security" or enter @about:preferences#privacy@ in the URL bar
24 # Scroll down to the *Certificates* section
25 # Click on the button "View Certificates...".
26 # Make sure the "Authorities" tab is selected
27 # Press the "Import..." button.
28 # Choose @{{ca_cert_name}}@
29 # Tick the checkbox next to "Trust this CA to identify websites"
31 # The certificate should appear in the list of Authorities under "Arvados"
33 h4. Other browsers (Safari, etc)
35 The process will be similar to that of Chrome and Firefox, but the exact user interface will be different. If you can't figure it out, try searching for "how do I install a custom certificate authority in (my browser)".
37 h3. Installation on Linux OS certificate storage
39 To access your Arvados instance using command line clients (such as @arv-get@ and @arv-put@) without security errors, install the certificate into the OS certificate storage.
43 *Important* the certificate file added to @ca-certificates@ must have the extension @.crt@ or it won't be recognized.
46 <pre><code>cp {{ca_cert_name}} /usr/local/share/ca-certificates/arvados-snakeoil-ca.crt
47 /usr/sbin/update-ca-certificates
51 h4. Alma/CentOS/Red Hat/Rocky
54 <pre><code>cp {{ca_cert_name}} /etc/pki/ca-trust/source/anchors/
55 /usr/bin/update-ca-trust
projects / arvados.git / blob