Nexus' software components have new names:

Nexus PRIME -> Smart ID Identity Manager
Nexus Certificate Manager -> Smart ID Certificate Manager
Nexus Hybrid Access Gateway -> Smart ID Digital Access component
Nexus Personal -> Smart ID clients

Go to Nexus homepage for overviews of Nexus' solutions, customer cases, news and more.

This article describes how to add Certificate Authorities in Smart ID components.


In this article, <SMARTIDHOME> refers to /home/nexus, but this can be different depending on the setup.

For Smart ID components to trust Certificate Authorities (CA), the CA certificates must be available in Smart ID. This is needed if you want:

  • To trust external services, like LDAPS, Smart ID Messaging (Hermod) and TLS database connections.
  • To be able to use Client Certificate Authentication.

To trust certificate authorities (CAs), do the following: 

  1. Store the CA certificates in <SMARTIDHOME>/docker/compose/cacerts, in binary (.cer) format.
  2. Restart all running Smart ID containers on the host where certificates are added. 

This article is valid for Smart ID 21.04 and later.

Related information