I agree with you on certificate documentation. I feel there needs to be an easier way to manage certificates for UCS, including uploading issuerCA and purchased SSL certificates. I recently added my own purchased wildcard certificates based on: (which seemed easy enough)
but after adding this checking UCS diagnostics failed with unverified certificates.
I added the intermediate cert following this guide:
which cleared up the errors in the diag. Maybe I’m doing it wrong, but it feels like certificates could be very difficult and confusing, especially when it can potentially break the entire UCS system?