T
Tai Li
Guest
Hi mjacobs , Thanks for your quick reply. It seems to me that I have a certificate chain issue. I am using a self-signed certificate. This is my execution of command: proenv sslc s_client -connect ttl:443 -showcerts -CApath c:\progress\oe102b\certs My results: Loading 'screen' into random state - done CONNECTED(00000160) depth=0 /CN=ttl.xyz.com verify error:num=20:unable to get local issuer certificate verify return:1 depth=0 /CN=ttl.xyz.com verify error:num=21:unable to verify the first certificate verify return:1 --- Certificate chain 0 s:/CN=ttl.xyz.com i:/CN=ttl.xyz.com -----BEGIN CERTIFICATE----- MII... MSA... NTN... bXM... USM... ETR... ZQh... am/... Rsp... fcL... AwE... Tzd... 8M3... DoB... RKq... kub... -----END CERTIFICATE-------- Server certificate subject=/CN=ttl.xyz.com issuer=/CN=ttl.xyz.com --- No client certificate CA names sent --- SSL handshake has read 910 bytes and written 444 bytes --- New, TLSv1/SSLv3, Cipher is AES128-SHA Server public key is 2048 bit Compression: NONE Expansion: NONE SSL-Session: Protocol : TLSv1 Cipher : AES128-SHA Session-ID: 733... Session-ID-ctx: Master-Key: B1E... Key-Arg : None Start Time: 1392696458 Timeout : 300 (sec) Verify return code: 21 (unable to verify the first certificate) --- read:errno=10054 Do you have any advice? Meantime I'll find out how I can debug from a certificate chain. Thanks in advance.
Continue reading...
Continue reading...