diff --git a/docs/config.md b/docs/config.md
index 094b3e6..adf2318 100644
--- a/docs/config.md
+++ b/docs/config.md
@@ -91,5 +91,21 @@ explanation of each key, with the type of its value:
     fixture is returned. If not set, the value previous set in
     `insights-client.conf` is not changed.
 
+- `insights.base_url` (string)
+
+    The base URL to use for REST API calls to the various Insights services.
+
+- `insights.ca_path` (boolean)
+
+    The default CA path/file to use for verifying the SSL connections to the
+    Insights services. To be able to use the system CA store, this setting must
+    be set to an empty string. Please note that this key is effectively used
+    only if `insights.insecure` is `true`.
+
+- `insights.insecure` (boolean)
+
+    This specifies whether to disable the validation of the SSL certificate
+    of the Insights services.
+
 [dynaconf]: https://www.dynaconf.com/ "Dynaconf"
 [toml]: https://toml.io/ "TOML"
diff --git a/pytest_client_tools/test_config.py b/pytest_client_tools/test_config.py
index c2cd452..c4ad4b6 100644
--- a/pytest_client_tools/test_config.py
+++ b/pytest_client_tools/test_config.py
@@ -40,6 +40,15 @@ def __init__(self):
             Validator("candlepin.environments", is_type_of=list),
             Validator("insights.legacy_upload", is_type_of=bool),
             Validator("insights.auto_update", is_type_of=bool),
+            Validator(
+                "insights.base_url",
+                default="https://cert-api.access.redhat.com/r/insights/platform",
+            ),
+            Validator(
+                "insights.ca_path",
+                default="/etc/insights-client/cert-api.access.redhat.com.pem",
+            ),
+            Validator("insights.insecure", is_type_of=bool, default=False),
         )
         self._settings.validators.validate()