@nordex1 I think the two of you talk about different processes to connect the UI to Incus.
@Tony_Anytime is showing the token based workflow where the web browser generates a certificate, provides it to you as a pfx to load, then requests a token that you generate by running incus config trust add NAME.
In that scenario, you don’t need to transfer the .crt and call trust add-certificate as that part is done for you by the UI through the token you provided.
I did notice a couple of cases where browsers are weird and despite you having loaded the .pfx in the browser, it won’t use it for the website until you close the browser and re-open it.
I’ve noticed that primarily on Firefox in the past, so that may be what’s going on here.