Hi, are you sure that you have replaced the new root.pem on the client side, and put new server CERTIFICATE and new PRIVATE KEY pair on the server side?
- Suresh On Sun, 28 May 2006 22:21:22 -0400 Lawrence Rose <[EMAIL PROTECTED]> wrote: > Hi: > > I setup the four openSSL examples in Viega et al with certs and ran fine > until the 30 day certs expired. Now after I cut a new root.pem and > sereverCA.pem I cannot pass certificate verification. Where have I gone > wrong? > I've tried everything these past several days altering the cnf, > recutting certs - any help most appreciated! > > err 19:self signed certificate in certificate chain > ** client2.c:69 Error connecting SSL object > 1:error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate > verify failed:s3_clnt.c:894: > > -- larry > ------------------------------------------------------------------------ > Lawrence L. Rose 190 Park Avenue > Daytona Development Florham Park, NJ 07932 > AT&T Labs - Research Tel: 793.360.8606 > [EMAIL PROTECTED] Cell: 908.463.3155 > > > > > > > ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]