Dear mod-ssl users, I had trouble with verisigns digital ID's. I thought I'll write down the solution, to give a clue to others, who will fall into the same situation. We have bought a Secure Server ID from Verisign, it costs $895. They sent us the cert, so i installed it immediately. It did not worked at 128bit encription, and all the browsers were complaining about, that "The certificate Chain is incomplete." so I was browsing to www.modssl.org, and bombed suport at Verisign, with lots of emails. I only had success at the modssl homepage, where i found the answer: there needs to be an Intermediate CA installed, to make browsers possible, to correctly recognize the signature, that the server provides. The intermediate ca, that can be found at verisign's webpage was not working for Us. http://www.verisign.com/cus/srv/install/intermediate/v00g.html Asking Verisign for one, was a failure, they were talkin about how to install an IIS certificate in their answer :-) So finally, we could export an intermediate CA from another site's signature, that was using the same verisign class 3 certificate. This copy is working now. I hope this is the right one, and it's the same for all the class 3 id. However I won't paste it here. The browsers are not complaining, that the certificate chain is incomplete. I hope i did not bother You, Best Regards, --Rp. ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
