You can manage trusted certificate authorities (CAs) under Administration > Security > Trusted CA Store. This page lets you import signed certificates or full certificate chains from trusted third-party CAs into the SCC’s CA service. You can also update the trusted root store by clicking Update in the SSL Certificate Authorities Update section.

For SSL certificate verification to work properly, the complete certificate chain must be available. You can import root certificates on their own or as part of a full chain. The Trusted CA Store maintains a secure list of trusted CA certificates, which are used to verify any end-user certificates imported into the SCC.

The role of the SCC CA—whether as a root or intermediate CA—depends on how its certificate is signed. A self-signed certificate means it acts as a root CA; if it’s signed by another CA, it functions as an intermediate CA.

To import intermediate CAs, you have two options: