When trying to authenticate SSL verification fails even though root certificate is install
Issue #17
invalid
We have a case where the root certificate of a site is in the cacerts of our java but the intermediate certificate is not. The websudo login fails because it cannot verify SSL first.
It seems like having the root certificate should be enough for SSL seeing as it signs the intermediate.
Not sure why this happens - is there some way to recursively check up the cert chain until you find a matching cert, or does it fail if it cannot verify the first cert above the site cert?
Comments (2)
-
-
- changed status to invalid
The client needs all certificates in the certificate chain in order to ensure the validity of the server certificate.
http://security.stackexchange.com/questions/5253/what-happens-when-an-intermediate-ca-is-revoked
- Log in to comment
https://extranet.atlassian.com/jira/browse/BUILDENG-4060