When your certificate is made available to you from your CA they will notify you of additional certificates that support the validity of your new certificate. These certificates are refereed to as Root and Intermediate certificates.
Some CAs will send you a single certificate file that contains the server certificate and all root and intermediate certificates, if you receive this you can go straight to this article. Your CA may also provide them as either individual certificate files or as single certificate bundle containing them all.
The certificates that you import into Access Manager should be in PEM format, the PEM format is the most common format that Certificate Authorities issue certificates in. PEM certificates usually have extensions such as .pem, .crt, .cer, and .key. They are Base64 encoded ASCII files and contain "-----BEGIN CERTIFICATE-----" and "-----END CERTIFICATE-----" statements. Server certificates, intermediate certificates, and private keys can all be put into the PEM format.
To upload the intermediate certificates to Access Manager go to Configuration > SSL and expand the Upload Keys and Certificates section and select the Trusted CA Certificate option.
1. Select “Choose File” and browse to the select your root or intermediate certificates and then select “Upload”
2. Repeat this process for all root and intermediate certificate