How to manage SSL (TLS) certificatesο
Server certificate validationο
By default, when a remote is added, if the URL schema is https, the Conan client will verify
the certificate using a list of authorities declared in the cacert.pem file located in the Conan home (~/.conan).
If you have a self signed certificate (not signed by any authority) you have two options:
Use the conan remote command to disable the SSL verification.
Append your server
crtfile to thecacert.pemfile.
Client certificatesο
If your server is requiring client certificates to validate a connection from a Conan client, you need to create two files in the Conan home directory (default ~/.conan):
A file
client.crtwith the client certificate.A file
client.keywith the private key.
Note
You can create only the client.crt file containing both the certificate and the private key
concatenated and not create the client.key
If you are a familiar with the curl tool, this mechanism is
similar to specify the --cert / --key parameters.