The trusted certificates pane allows you to manage the certificates that Elektron uses to authenticate users logging in via EAP-TLS, either in standalone mode or wrapped in PEAP or TTLS. Using EAP-TLS, a user authenticates herself to Elektron using her digital certificate, usually in the form of a smart card. Elektron must have the digital certificate from the authority that signed the user’s certificate in order to validate the login.
To add a new certificate authority to the list, click the Add button and select a certificate in PEM (i.e., text) or DER (i.e., binary) format. You can view imported certificates by double-clicking the list entry, and delete a certificate by selecting it in the list and hitting the Delete key.
For more information, see the chapter Digital Certificates.