On 5/17/23 5:10 PM, Jason Tan wrote:
Have a look at this.
https://success.qualys.com/discussions/s/question/0D52L00004To0DUSAZ/your-ssl-server-test-incorrectly-reports-an-incomplete-chain
That's actually my own thread, from a few years ago.
The problem here is not an incomplete chain, and neither is it prior
problem of the supporting certs being *included* in the keystore, rather
than *chained* (a subtlety I didn't understand at the time).
That problem caused security scans to raise red flags. This one is
keeping Tomcat from opening the port.
--
JHHL
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org