Hi @soutchilin ,
When you set SSLValidateCertificate to true, you’re asking the API to check the server certificate - in other words, to first verify that the server is who they say they are, but next that this is a server you’re happy to trust.
To do this, you have to tell the API which servers you trust. This is done using the trust store, which stores which servers you are happy to trust. You’ll need to set up a trust store that trusts the broker, which will be stored in a directory - you can then point SESSION_SSL_TRUST_STORE_DIR to this directory.