Hi Goetz, > >> cat <ca_directory>/*.pem >ca.pem > >> openssl verify -CAfile ca.pem cert_to_check > >> works, there is something really strange with your system ... > > > > Same error: > > > > error 20 at 0 depth lookup:unable to get local issuer certificate > > This indicates that your CA certificate is not in any of the *.pem > files in your CA directory. > > if an > openssl verify -CAfile <your_ca_file> cert_to_check > succeeds, then the CA cert is int the file but not > in the CA dir (at least not with the suffix .pem). > > Is it possible you stored the ca cert with an other suffix > (like .crt) ?
Yes. It is stored with the filename "root.cert". My config file seems to point to the correct file: certificate = $dir/certs/root.cert Best Regards, Mark ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
