espfutbol98
New Member
- Messages
- 200
- Reaction score
- 2
- Points
- 0
Alright so my website has about 5 different sub domains with all but one signed by a trusted CA. The one that doesn't has its own self-signed CA for SSL client authentication. I used to have only one CA for the server and the client certs but now I created 2 intermediate CAs. The structure is:
I have installed the Root, CA 1, CA 2, and Client certs into by browser but when I go to the site, its asks for a cert, which I give it, and then gives the error "ssl_error_unknown_ca_alert".
This is the domain setup in httpd.conf:
I heard that the SSLCertificateChainFile is one file that has the file contents of all the certs so this is the order I copy and pasted them in:
1. Root
2. CA 1
3. CA 2
Any ideas?
--Also there is nothing in the error logs
Code:
*Root
*CA 1
*Server Cert
*CA 2
*Client Cert
This is the domain setup in httpd.conf:
Code:
SSLCertificateFile "C:/path/to/file/server.crt"
SSLCertificateKeyFile "C:/path/to/server.key"
SSLCACertificatePath "C:/path/to/ca/"
SSLCertificateChainFile "C:/path/to/chain.crt"
SSLCACertificateFile "C:/path/to/ca.crt"
[B]SSLVerifyDepth 10[/B]
1. Root
2. CA 1
3. CA 2
Any ideas?
--Also there is nothing in the error logs
Last edited: