Hello all,

Seeking some assistance in understanding the the steps/command as it pertains to configuring the reverse proxy to request client certificates. In the Configure the Reverse Proxy to Request Client Certificates steps on the VMware 6.7 site, it talks about creating a trusted client CA store. The first command (example) shows you how to create a certificate store on the PCS appliance. I do have one question:

1) Is the below command simply converting my *.cer file to *.pem or is it actually creating a trusted client CA store?

cd /usr/lib/vmware-sso/

openssl x509 -inform PEM -in xyzCompanySmartCardSigningCA.cer >> /usr/lib/vmware-sso/vmware-sts/conf/clienttrustCA.pem

Any clarification/guidance would be appreciated!