Hi, I try to test out some chained certificates with web server. My setup is as follow:
my-cacert.pem <== my ca certificate
level1.cert <= my level1 certificate signed by my ca
level1.key <= my level1's key file
level2.pem <= my level2 certificate use as a server side certificate
ca.pem <= include my-cacert.pem and level1.cert as a chained CA source for the
sslserver.
I have installed my-cacert.pem into IE/firefox as trusted CA.
When using IE7 to connect, I always get "Internet Explorer cannot display the
webpage". and nothing happened.
When using firefox, it informs me that it is "an invalid security certificate.
The certificate is not trusted because the issuer certificate is unknown."
I would like to know is there anything wrong with my generated certificates?
Attached also the network capture for IE7 connection. It seems IE FIN the
connection.
Server: Linux lighttpd 1.4.19
Client: Windows XP, IE7, firefox 3.0.3
Actually, I try Aapche 2.x also, same result.
Thanks for your help!
--
qun-ying
__________________________________________________________________
Ask a question on any topic and get answers from real people. Go to Yahoo!
Answers and share what you know at http://ca.answers.yahoo.com
ca.pem
Description: Binary data
chained-cert.pcap
Description: Binary data
level1.cert
Description: Binary data
level1.key
Description: Binary data
level2.pem
Description: Binary data
my-cacert.pem
Description: Binary data
lighttpd.conf
Description: Binary data
