Add Intermediate an issued Certificate Server
-
Hi all, i've been made a little mistake probably i've already issued an Digicert certificate without the intermediate certificate and when i run an ssl check of course the Chain results incomplete, can i simply add it to the Certificata Data following the setup --begin-- --end-- -begin--end-- ? and then HaProxy will manage that?
-
@jirobaye
Import both, the CA and the intermediate as a separate certificate into the CA section System > Certificate Manager > CAs. -
@viragomann so i've to fill only with the Intermediate certifica the section Certificate Data and Import an existing certificate right?
i've to add something in "Next Certificate Serial" or not? -
@jirobaye
No, only the certificate data and a description for your reference. -
@viragomann and then in HAProxy in SSL offloading i've to add something other than the actual certificat or i've in someway the intermediate?
-
@jirobaye
No, nothing to do else.Just assign the server certificates. If one is requested HAproxy provides the whole chain automatically.
-
@viragomann does not work, i've added the intermediate Certificate in System > Certificate Manager > Ca
then i've not touched anything in haproxy and i've tried an ssl check and say that the chain is still incomplete because of that
-
@jirobaye
And what exactly is it complaining? What is it missing?Ensure that you have the proper intermediate CA certificate.
I've it set up as I told you and the ssl test says "sent by server" for the intermediate certificate.
-
@jirobaye said in Add Intermediate an issued Certificate Server:
Digicert
What intermediate are you looking for?
https://www.digicert.com/kb/digicert-root-certificates.htm
DigiCert Customers: If you are looking for your certificate’s intermediate root, please download it from inside your DigiCert account or contact your account manager or DigiCert Support.
