Trusting a root CA certificate - "iLO/iLO 3/iLO 4/iLO 5 Default Issuer (do not trust)" certificate

When you trust an iLO self-signed certificate using the Settings > Security > Manage Certificates > Add Certificate screen and select Fetch from IP address or hostname, always enable the Force trust leaf certificate option, that ensures only the iLO leaf certificate is added to the trust store. If you forget to use this option, the iLO Default Issuer (do not trust) certificate is sometimes added to the trust store. In that case, delete the Default Issuer (do not trust) certificate. Never place these certificates into the trust store as they can cause errors when present.