You need to check if the given certificate is enough or do u need root and inter certificate to, check this blog on how to verify the certificates manually : Manual verification of certificate chain of trusty
and regarding the WSSE in the modules this password is usually provided by third party which is used in webservice authentication at soap header level.