Configuring Custom Root CA Certificate

If your organization uses its own custom Certificate Authority, CDSW engines will not be able to automatically recognise the custom CA's root certificate. This topic describes how to add your internal root CA certificate to CDSW so that it is inserted into the engine's root certificate store every time a session (or any workload) is launched. This will allow processes inside the engine to communicate securely with the ingress controller.

  1. Log in to CDSW as a site administrator.
  2. Go to Admin > Security.
  3. Under the Root CA Configuration section, paste in the contents of your organization's internal root CA certificate file.
    The contents of the certificate should remain in .CRT format. For example:
    ---BEGIN CERTIFICATE---
    xxxxxxxxxxxxxxxxxxxx
    xxxxxxxxxxxxxxxxxxxx
    ...
    ---END CERTIFICATE---
    The contents of this field are then inserted into the engine's root certificate store every time a session (or any workload) is launched. This allows processes inside the engine to communicate with the ingress controller.
  4. Click Update.
Restart any existing sessions and re-build any existing models to ensure that the newly launched engines pick up this change.