Custom Certificate Authority Support

AI Workbench auto-manages custom CAs from your system’s certificate store, enabling secure connections for both services and containers.

Certificate Integration

AI Workbench handles certificates by:

• Detecting certs in your system’s store

• Setting up Docker and Podman to trust these certs

• Adding certs to project containers at build and runtime

• Configuring pip and other package managers

This lets your projects access secure internal services, registries, and package repos.

System Certificate Stores

Default cert store locations:

• Linux: /etc/ssl/certs

• macOS: System Keychain

• Windows: Windows Certificate Store

Important Notes

Note

If you add a custom CA to your host with AI Workbench running and your container runtime is Docker Desktop, then you must manually restart both Docker Desktop and AI Workbench.

• Certs must be in your system’s store

• Changes to the cert store may need:

  • Container rebuilds

  • Service restart

• Cert errors appear in system logs

• Docker Compose needs manual cert setup via entrypoint scripts

For help managing system certificates, contact your IT security team.