I am using Apache server for HTTPS connection with client. I had generated client certificate signed by an intermediate CA(CA1), which is further signed by an intermediate CA(CA2). CA2 is signed by a ROOTCA. I loaded chain of certificates on client excluding ROOTCA(i.e., clientcert+CA1+CA2). Configuration on Apache server: SSLCertificateFile server.crt SSLCertificateKeyFile server.key SSLCACertificateFile cachain.crt [i.e, ROOTCA+CA1+CA2] SSLVerifyClient require SSLVerifyDepth 3
With the above setup, server terminated MutualTLS connection saying: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca Could someone help me in solving the above problem? -- View this message in context: http://www.nabble.com/Apache-server-says-unknown-ca-when-clientcertificate-chain-is-sent-to-server-tp22675508p22675508.html Sent from the OpenSSL - User mailing list archive at Nabble.com. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
