RE: IE could not connect to a chaine-cert's ssl server

Ah, I miss that one. Thanks. -- qun-ying --- On Wed, 2/4/09, Giang Nguyen wrote: > From: Giang Nguyen > Subject: RE: IE could not connect to a chaine-cert's ssl server > To: openssl-users@openssl.org > Received: Wednesday, February 4, 2009, 2:02 PM > i think it's be

RE: IE could not connect to a chaine-cert's ssl server

i think it's because your "my-cacert.pem" is not considered a CA: it has "CA:FALSE" arch [temp]$ openssl x509 -in my-cacert.pem -BEGIN CERTIFICATE- MIIC9jCCAl+gAwIBAgIBADANBgkqhkiG9w0BAQUFADB4MQswCQYDVQQGEwJDQTET MBEGA1UECBMKU29tZS1TdGF0ZTEhMB8GA1UEChMYSW50ZXJuZXQgV2lkZ2l0cyBQ dHkgTHRkMR

IE could not connect to a chaine-cert's ssl server

Hi, I try to test out some chained certificates with web server. My setup is as follow: my-cacert.pem <== my ca certificate level1.cert <= my level1 certificate signed by my ca level1.key <= my level1's key file level2.pem <= my level2 certificate use as a server side certificate ca.pem <= incl