zrhoffman commented on issue #7035: URL: https://github.com/apache/trafficcontrol/issues/7035#issuecomment-1622216688
Okay, so @srijeet0406 and I looked into #7035, and the warning, > ``` > WARNING: SSL keys were successfully added for 'my-delivery-service', but the input certificate may be invalid (certificate verification produced a different chain) > ``` Is not related to certificate chain order at all, it happens because the root certificate provided in the chain is not one of the CA certs provided in the TO host's `/etc/pki/tls/certs` directory. So, adding the root cert to `/etc/pki/tls/certs` on the TO host should make that warning go away. Receiving a warning when the root cert is not in `/etc/pki/tls/certs` is expected behavior, but maybe Traffic Ops can provide a better warning that describes what the problem is? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
