The customer described the following problem:
We have one or two backend service providers who are constantly changing their SSL certificates.
For just these routing URL's I want to trust a CA Cert and not "pin" the actual server cert itself.
On Friday, for our Oracle RightNow resource I tried adding the new Oracle Root cert and making sure "Signing Certs" and "Trust Anchor" was checked, but when they did their change it seemed to have no effect and we started receiving empty payloads (as per usual with untrusted routes)
Is it possible to trust via a certification higher up in the certification chain instead?
Many thx in advance.