Client Certificate .ca file?
A web application I have setup requires a .ca file to identify the Certificate Authority.
Any ideas on how to get that would be much appreciated.
10 Replies
Still waiting for any help on this.
This may also be of use.
Can you provide some more context? What are you trying to do?
We're using Axigen mail server, and in that for the local webadmin and webmail IP's we are using a Cloudflare Client Certificate for SSL.
When importing the certificate and private key into Axigen, it shows "No CA" as it cannot identify the Certificate Authority which I guess is why I'm running into this issue.
When attempting to access the page you get the error net::ERR_CERT_AUTHORITY_INVALID
When you say client certificate, do you mean origin certificate?
No, I do mean Client Certificate.
Axigen rejects origin certificates for some reason.
We also can't use Let's Encrypt because it's not for a (sub)domain, it's for a local IP address.
Yeah Client Certificates are for MTLS. Seems like the server requires a public validate SSL certificate. You could make a DNS record that points to the local IP and use that for Let’S Encrypt.
We might consider doing that when we implement an internal DNS, I was just curious if it was possible to get the .ca file which seems to be to identify the Certificate Authority.
You can’t for client certificates. Cloudflare Manages the CA
I see, well thank you!