Hello everyone,
I am using nginx 1.1.19 with HTTPS on a debian machine and I'd like to use a chain of certificates.
I cannot upgrade nginx to the current stable release ( problably that's my real problem... ) and I'd like also to build my own CA root.
I created all the certificates, installed them on the debian machine; checked them with "openssl verify" with success.
I followed the instructions from these sites:
http://nginx.org/en/docs/http/configuring_https_servers.html
http://www.digicert.com/ssl-certificate-installation-nginx.htm
But every time I try to use HTTPS from a client nginx explode with the following error:
"SSL_do_handshake() failed (SSL: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate) while SSL handshaking, client: 192.168.0.78, server: localhost"
The problem disappears If I just use a single self-signed certificate.
It seems on v1.1.19 I am not allowed to use a custom CA even if it's correctly configured on openSSL.
Any advice or Hint ?
I am using nginx 1.1.19 with HTTPS on a debian machine and I'd like to use a chain of certificates.
I cannot upgrade nginx to the current stable release ( problably that's my real problem... ) and I'd like also to build my own CA root.
I created all the certificates, installed them on the debian machine; checked them with "openssl verify" with success.
I followed the instructions from these sites:
http://nginx.org/en/docs/http/configuring_https_servers.html
http://www.digicert.com/ssl-certificate-installation-nginx.htm
But every time I try to use HTTPS from a client nginx explode with the following error:
"SSL_do_handshake() failed (SSL: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate) while SSL handshaking, client: 192.168.0.78, server: localhost"
The problem disappears If I just use a single self-signed certificate.
It seems on v1.1.19 I am not allowed to use a custom CA even if it's correctly configured on openSSL.
Any advice or Hint ?