To handle CA cert chain, you can use SSL_CTX_add_extra_chain_cert.. are you expect certificate form client ?
- Saurabh On Thu, Jun 12, 2014 at 7:09 AM, Hafedh TRIMECHE <hafedh.trime...@gmail.com> wrote: > Hi, > I would implement an OpenSSL Server which can handle authentication > initiated by 2 client certificates issued by 2 CAs: > Client1 < CA1 < Root1 > and > Client2 < CA2 < Root2 > Please how to achieve mutual authentication using some APIs: > - X509_STORE_add_cert > - SSL_CTX_add_extra_chain_cert > - SSL_CTX_add_client_CA > > to avoid the error 14094416 certificate unknown > > Regards > > > > -- > View this message in context: > http://openssl.6102.n7.nabble.com/2-Server-certificates-tp50872.html > Sent from the OpenSSL - User mailing list archive at Nabble.com. > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List openssl-users@openssl.org > Automated List Manager majord...@openssl.org >
