curl-w32/docs/cmdline-opts/ca-native.md

785 B

c SPDX-License-Identifier Long Help Protocols Category Added Multi See-also Example
Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al. curl ca-native Use CA certificates from the native OS TLS tls 8.2.0 boolean
cacert
capath
insecure
--ca-native $URL

--ca-native

Tells curl to use the CA store from the native operating system to verify the peer. By default, curl otherwise uses a CA store provided in a single file or directory, but when using this option it interfaces the operating system's own vault.

This option works for curl on Windows when built to use OpenSSL, wolfSSL (added in 8.3.0) or GnuTLS (added in 8.5.0). When curl on Windows is built to use Schannel, this feature is implied and curl then only uses the native CA store.