SSL certificate chains
Some browsers may complain(抱怨) about a certificate signed by a well-known certificate authority, while other browsers may accept the certificate without issues. This occurs because the issuing authority has signed the server certificate using an intermediate certificate that is not present(出現) in the certificate base of well-known trusted(信任) certificate authorities which is distributed(釋出) with a particular browser. In this case the authority provides a bundle of(一束) chained certificates which should be concatenated(連線) to the signed server certificate. The server certificate must appear before the chained certificates in the combined file:
解釋:
某些瀏覽器有時可能會抱怨知名證書頒發機構簽名的證書,但是另一些瀏覽器可能會接受改證書而不會產生任何問題。產生該問題的原因就是證書頒發機構採用了“中間證書”來
作為伺服器認證,但是該中間證書卻沒有包含在知名證書頒發機構對特定瀏覽器頒發的可信任基證書庫中。解決方案就是權威證書頒發機構提供一系列的“chained certificates”,
這些鏈證書被連結用於簽名伺服器認證。在同一個證書檔案中 “伺服器證書” 必須出現在 “chained certificates”的前面。
參考:http://lukejin.iteye.com/blog/587200
生產實際使用:
解釋:
某些瀏覽器有時可能會抱怨知名證書頒發機構簽名的證書,但是另一些瀏覽器可能會接受改證書而不會產生任何問題。產生該問題的原因就是證書頒發機構採用了“中間證書”來
作為伺服器認證,但是該中間證書卻沒有包含在知名證書頒發機構對特定瀏覽器頒發的可信任基證書庫中。解決方案就是權威證書頒發機構提供一系列的“chained certificates”,
這些鏈證書被連結用於簽名伺服器認證。在同一個證書檔案中 “伺服器證書” 必須出現在 “chained certificates”的前面。
參考:http://lukejin.iteye.com/blog/587200
生產實際使用:
來自 “ ITPUB部落格 ” ,連結:http://blog.itpub.net/23890223/viewspace-2148071/,如需轉載,請註明出處,否則將追究法律責任。
相關文章
- git SSL certificate problem: unable to get local issuer certificateGit
- 解決git SSL certificate problemGit
- error:14090086:SSL routines:ssl3_get_server_certificateErrorServer
- GIT clone報錯: SSL certificate problem: unable to get local issuer certificateGit
- [GuzzleHttp\Exception\RequestException] cURL error 60: SSL certificate problem: unable to get localHTTPExceptionError
- Nginx配置ssl_client_certificate客戶端認證問題Nginxclient客戶端
- python爬蟲--urllib.error.URLError: <urlopen error [SSL: CERTIFICATE_VERIFY_FAILED] certiPython爬蟲ErrorAI
- Oracle Cache Buffer ChainsOracleAI
- SAP QM Certificate of Analysis – Incoming Certificate
- 修復 SSL Certificate Problem,如何定位及常見問題的處理策略
- Oracle Least Recently Used ChainsOracleASTAI
- Certificate Authority
- Linux 報錯Certificate verification failed: The certificate is NOT trusted.LinuxAIRust
- sudoku 數獨 XY-ChainsAI
- 用於排查cache buffers chainsAI
- 如何把某個網站的SSL Server certificate鏈匯入到ABAP Netweaver系統裡網站Server
- RHEL8.9中anywhere報錯error:140AB18F:SSL routines:SSL_CTX_use_certificate:ee key too small的解決辦法.Error
- 請求https介面時報錯:Caused by SSLError(SSLError(1, u‘[SSL: CERTIFICATE_VERIFY_FAILED] certificat,安裝certifiHTTPErrorAI
- yarn certificate has expiredYarn
- Android開發 - 掌握ConstraintLayout(六)鏈條(Chains)AndroidAI
- [20220311]完善ash_wait_chains指令碼.txtAI指令碼
- mutex,latch,lock,enqueue hash chains latch基礎概念MutexENQAI
- [20211111]補充完善ash_wait_chains指令碼.txtAI指令碼
- PHP composer 報錯 certificate verify failedPHPAI
- git (v2.18.0) error setting certificateGitError
- 教育授權certificate used to sign the license
- [20220519]完善tpt dash_wait_chains2.sql指令碼.txtAISQL指令碼
- [20200409]使用ash_wait_chains注意的一個細節.txtAI
- kafka ssl sasl_ssl 配置Kafka
- ssl
- Fiddler(三)Fiddler 報錯creation of the root certificate was not successful
- Useless SAP PA certificate, do we still need to get it?
- 專案使用guzzleHttp報錯:certificate has expiredHTTP
- SSL - SSLHandshakeException: Unrecognized SSL message, plaintext connection?ExceptionZedAI
- Vesta 安裝SSL – HTTPS SSL 教程HTTP
- electron專案npm i 報錯certificate has expiredNPM
- gitlab-runner x509: certificate signed by unknown authorityGitlab
- phpStudy安裝ssl證照 – HTTPS SSL 教程PHPHTTP
- Tomcat 安裝SSL證書 – HTTPS SSL 教程TomcatHTTP