Hi Dave, This is a close box without a server operator. Is there a way to determine why the cert chain was Disliked.
Thanks, Anamitra On 10/26/12 3:14 PM, "Dave Thompson" <dthomp...@prinpay.com> wrote: >>From: owner-openssl-us...@openssl.org On Behalf Of Anamitra Dutta >>Majumdar >(anmajumd) >>Sent: Thursday, 25 October, 2012 02:48 > >>We are getting the following error when running the s_client. >>We are on openssl 0.9.8l >>What could be the possible cause of this error ><snip> >>4955:error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad >certificate: >>s3_pkt.c:1065:SSL alert number 42 >>4955:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake failure: >>s3_pkt.c:530: > >The server doesn't like the client certificate (chain) you sent. >It didn't use one of the more specific alert codes to say what >it disliked. Either ask the server operator(s) what it disliked, >or if they have a stated policy about what certs they accept, >examine your cert chain and compare to that policy. > > >______________________________________________________________________ >OpenSSL Project http://www.openssl.org >User Support Mailing List openssl-users@openssl.org >Automated List Manager majord...@openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org