LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page [SOLVED] intermediate certificate
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 05-17-2020, 03:36 AM   #1
pulain8
LQ Newbie
 
Registered: Aug 2019
Posts: 7

Rep: Reputation: Disabled
intermediate certificate

hi,
lets say that an aplication uses an intermediate certificate.this intermediate certificate is generated from ca root certificate.
the intermediated certificate must be in the same server with ca root certificate?
when intermediate certificate is used by client application,then the root certification is also verified.how know where to find the ca root?
 
Old 05-17-2020, 04:28 AM   #2
shruggy
Senior Member
 
Registered: Mar 2020
Posts: 3,670

Rep: Reputation: Disabled
This
Code:
openssl s_client -connect your.server.com:443
will show you the whole certificate chain up to the CA root. Usually, you would then search for them and acquire them by conventional methods like downloading from the server. If that is not feasible then you can use openssl again:
Code:
echo -e '\032' | openssl s_client -connect your.server.com:443\
> -showcerts | sed '1,/^-----END/d; /^---$/,$d; /^ /d' > ca-certs-bundle.crt
And if you want to have them separately then
Code:
csplit -zf'ca-cert' -b'%d.pem'\
ca-certs-bundle.crt '/^-----END/+1' '{*}'
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: How to setup a intermediate compatible SSL website with LetsEncrypt certificate LXer Syndicated Linux News 0 01-19-2016 04:30 PM
[SOLVED] The certificate is expired. Please ensure you have the correct certificate and your s manalisharmabe Linux - General 6 09-09-2013 12:51 PM
Verify return code: 19 (self signed certificate in certificate chain) tikit Linux - Server 1 04-10-2012 05:21 PM
Building a certificate chain from the certificate using openSSL aravinda78 Linux - Security 1 11-10-2008 01:51 AM
Can I retrieve certificate expiry date from an openssl certificate (command line) davee Linux - Security 1 07-21-2006 10:28 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:21 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration