If the certificate isn't self-signed, you would not need to add the server certificate to the trust store (trustedcerts.pem/jks), only it's issuing certificates (the intermediate and root), as the server certificate is provided by the server. The certificate and key for the server is stored in those individual files and referenced by the SAS Web Server configuration file. There are additional steps to provide the certificate and key to Environment Manager. Update the Key and Certificate That Are Used by SAS Web Server https://go.documentation.sas.com/doc/en/bicdc/9.4/bimtag/p0fwmiy0dasb5nn18fwx1x9mn2ub.htm Update Certificates for SAS Environment Manager https://go.documentation.sas.com/doc/en/bicdc/9.4/bimtag/p1fpnnm9hxkhlzn1x5tkqs1caeg5.htm#p0noalwfbhga1sn1grrrq6tls37m
... View more