SSL root certificates

Igor Clark igor at
Mon Mar 17 15:34:25 MSK 2008

Hi there

One of our clients has insisted on using Verisign SSL certificates.

According to 
  I need to install the Verisign Root CA.

I thought I needed to add this to nginx config using  
ssl_client_certificate but I've tried a variety of their CA certs in  
ssl_client_certificate but I still get "This cert was signed by an  
untrusted authority".

I see from this mailing list message:

On 6 Sep 2007, at 15:37, Igor Sysoev wrote:

> ssl_client_certificate is usualy your own ceritificate, that you use
> to sign some certificates and give them to clients. Client should
> import these certificates into their browsers.

so perhaps this isn't right.

Does anybody have experience using Verisign certs with nginx?
How can I add the custom Verisign root CA?

Thanks very much,

Igor Clark // POKE // 10 Redchurch Street // E2 7DD // +44 (0)20 7749  
5355 //

More information about the nginx mailing list