Statement introduced in Junos OS Release 18.1R1.
You can group multiple CA profiles in one trusted CA group for a given topology. These certificates are used to establish connection between two endpoints. To establish an IPsec connection, both the endpoints must trust the same CA. If either of the endpoints are unable to validate the certificate using their respective trusted CA (ca-profile) or trusted CA group, the connection is not established.
Required Privilege Level