ssl_server_trusted

List of CA root certificates the server trusts as issuers of client certificates.

ssl_server_trusted = certificates

Specify only CA root certificates. Do not include intermediate CA certificates.

The certificates must be in PEM, DER, or PKCS#7 format. You can either provide the actual certificates, or you can specify a path to a file containing the certificate chain.

For example:

ssl_server_trusted = certs\CA1_root.pem
ssl_server_trusted = certs\CA2_root.pem

See File Names for Certificates and Keys for more information on file types for digital certificates.