In the case of chained certficates, with 2 intermediate CAs, which
certificate do I add to to a trust store - is it the Trusted Root
certificate or an intermediate CA certificate or both intermediate CAs
or all of these ? When I Auto-import the trusted root, I am given the
option of all 3 certificates, but the Trusted Root is selected by
default. For example, I am using a DigiCertSSL wildcard certificate to
secure the identity server. Which part of the this certificate's chain
do I add to the ESP trust store? I seem to be able to get away with
using any of them! The documentation always refers to the Trusted Root,
so I am not really sure what to do. Any advice is welcome.

sttennant's Profile: https://forums.netiq.com/member.php?userid=389
View this thread: https://forums.netiq.com/showthread.php?t=42682