Upload public and private root and intermediate CAs to Discovery so you can get a more accurate security rating for the certificates chained to them.
If Discovery is unable to locate a certificate's root and intermediate CAs for a certificate, it down grades the certificate's security rating. To improve the certificate's security rating, upload a copy of the certificate's intermediate and root CAs. The next time Discovery runs a scan that includes that certificate, you'll get a more accurate rating.
Discovery supports these certificate file formats: .der and .cer
In CertCentral, in the left main menu, click Discovery > Manage Discovery.
On the Manage scans page, in the More actions dropdown, click Manage root and intermediate CAs.
On the Root and intermediate CAs page, click Add root or intermediate.
In the Add root or intermediate CA window, under CA type, select the certificate type: Private or Public.
Click Browse to find the CA certificate.
The root or intermediate CA certificate is uploaded to your account. The next time Discovery runs a scan that includes the certificate, the certificate's security rating will be updated.
DigiCert is the world's leading provider of scalable TLS/SSL, IoT and PKI solutions for identity and encryption. The most innovative companies, including 89% of the Fortune 500 and 97 of the 100 top global banks, choose DigiCert for its expertise in identity and encryption for web servers and Internet of Things devices. DigiCert supports TLS and other digital certificates for PKI deployments at any scale through its certificate lifecycle management solution, CertCentral®. The company is recognized for its enterprise-grade certificate management platform, fast and knowledgeable customer support, and market-leading security solutions. For the latest DigiCert news and updates, visit digicert.com or follow @digicert.
©2020 DigiCert, Inc. All rights reserved. DigiCert, its logo and CertCentral are registered trademarks of DigiCert, Inc. Norton and the Checkmark Logo are trademarks of NortonLifeLock Inc. used under license. Other names may be trademarks of their respective owners.