[erlang-questions] Trouble with "SSL certificate chains"

Marc Worrell <>
Thu Nov 8 16:44:30 CET 2012


(now also to the list)

You need a separate file with the certificate chain.

Check: http://zotonic.com/docs/ref/modules/mod_ssl.html#certificate-and-key-files

And check start_listener/4 to see how a Mochiweb listener is started using the certificates and chains
https://github.com/zotonic/zotonic/blob/master/modules/mod_ssl/mod_ssl.erl

Finally you can use this tool to check if all is ok:
http://www.sslshopper.com/ssl-checker.html

- Marc


On 8 nov. 2012, at 16:38, Zabrane Mickael wrote:

> Hi guys,
> 
> I'm facing a problem with an intermediate SSL certificate and getting this in Firefox:
> 
> XXX.YYYY.com uses an invalid security certificate.
> 
> The certificate is not trusted because no issuer chain was provided.
> 
> (Error code: sec_error_unknown_issuer)
> 
> 
> From what I understood so far, the server certificate must appear before the chained certificates in the combined file:
> http://nginx.org/en/docs/http/configuring_https_servers.html#chains
> 
> But it doesn't work if I follow the link above. My Erlang server can't start at all.
> 
> How one can use an intermediate certificate in Erlang?
> Help very appreciated.
> 
> Regards,
> Zabrane
> 
> _______________________________________________
> erlang-questions mailing list
> 
> http://erlang.org/mailman/listinfo/erlang-questions

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://erlang.org/pipermail/erlang-questions/attachments/20121108/503b7d7a/attachment.html>


More information about the erlang-questions mailing list