On 9/3/2010 5:04 PM, Victor Duchovni wrote:
That is what I was figuring. Trying two different locations with the CA file I was using broke, when according to the list's information and my own reading it should work, turned out to require me to validate the CA file I was using again. What the case was, is I wasn't using OpenSSL to create the certs, as I have moved away from maintaining an OpenSSL CA to using the Microsoft CA, I grabbed a bundled cert, and it looks like it was split wrong. Downloading just the CA file itself fixed the issue and everything works perfectly now.On Fri, Sep 03, 2010 at 04:21:06PM -0500, Seann wrote:Sorry, I went back and RTFM, and found that. "TLS certificate verification: Error, unable to get local issuer certificate" is my new debug error that I am using Google to find out best places to look. I have the site CA file listed in the config, etc, so I am not sure why I get this error.This means that a root or intermediate CA cert is missing from the server certificate chain, or the root CA is not in your CA file. OpenSSL is trying to find an issuer cert for a non-root cert, and failing.
Now it is on to do the same thing with Dovecot, and then to make sure all the Authentication works correctly.
Thanks for all your help! ~Seann
smime.p7s
Description: S/MIME Cryptographic Signature
