SWIM Demo Server-Certificates-Importing HARICA root certificate on Windows
SWIM Weather Public Demonstration > SWIM Demo Server-Working with Certificates >

Importing the HARICA root testing certificate on Windows

To enable the Python example client on https://github.com/iblsoft/swimdemo to verify the AMQP server's authenticity on the Windows platform, we need to import the HARICA root testing certificate into the operating system. This is because the client is based on Apache Qpid Proton (Python API) , which on Windows does not use OpenSSL but redirects to the Windows TLS subsystem using the SChannel library. Windows is not aware of the HARICA staging root certificate used for testing SWIM services by default.

To import the HARICA certificate, follow these steps:

  1. Run the Windows Certificate Manager by typing "certmgr" into the Windows search bar.
  2. In certmgr, browse to Trusted Root Certification Authorities.
  3. Right-click on the Certificates folder.
  4. From the All Tasks menu pick the Import... option.
  5. This will start the Certificate Import Wizard, which will inform you that the certificate is going to be saved in the "Current User" store.
  6. On the next screen, browse to the HARICA root testing certificate e.g. HARICA-TLS-Root-2021-RSA.cer, and confirm with Next.
  7. The wizard will inform you it is going to store the imported certificate under the Trusted Root Certification Authorities. This is exactly what we need, so confirm with Next.
  8. A confirmation dialog will pop-up, confirm again with Next.
  9. If you get the following Security Warning, confirm with Yes:
  10. You should finally see the HARICA testing certificate imported in certmgr.
  11. You can now close certmgr.

The Python test client should now be able to verify the server's authenticity.