Capella Root Certificates

  • Capella Operational
  • concept
    +
    Capella automatically generates a root certificate to allow you to connect to your cluster from an external application. If your application needs to verify your connection to your Capella cluster with a certificate, you must use the root certificate provided in the Capella UI.

    Use Your Capella Root Certificate

    Capella provides an X.509 formatted root certificate as a .txt file. To use the root certificate to connect to your Capella cluster, you must re-save the file as a .pem or .crt file, depending on what certificate format your application is expecting.

    To download or copy the root certificate from your Capella cluster:

    1. From the Operational Clusters page, click the name of the cluster you want to connect to.

    2. Go to Settings  Security Certificate.

    3. Click Download or Copy.

    If you’re connecting using one of the Couchbase SDKs, you should not need a certificate for your cluster. Authentication and trust should be automatically handled by the SDK.

    If you run into issues, you can download the Capella root certificate and add it as a trusted certificate in your application’s trust store.

    For more information about connecting and authenticating with a certificate through an SDK, see:

    .NET | C | Go | Java | Kotlin | Node.js | PHP | Python | Ruby | Scala