Adding a root authority certificate to a server that does not already have the cert may be added to the server manually.
Install the ca-certificates package:
yum install ca-certificates
Enable the dynamic CA configuration feature:
Add it as a new file to /etc/pki/ca-trust/source/anchors/:
cp foo.crt /etc/pki/ca-trust/source/anchors/
CentOS 7.0 and later include a shared store for certificate authorities. Read the manual for additional information.
Previous versions of CentOS modifying the distributed certificate bundles like
/etc/pki/tls/certs/ca-bundle.trust.crt was the appropriate way of adding additional trusted certificate authorities.
These additional trusted certificate authorities must be ported forward to the CentOS 7.0 system manually. You can place them as certificate (PEM or DER) files in the following directory:
And then run the following command