How to load a TRUSTED Client CA
speedfirst
nginx-forum at nginx.us
Sat Jan 7 03:12:20 UTC 2012
I need to specify a CA file to "ssl_client_certificate" directive. This
crt is generated by openssl x509 command with "-trustout" parameter, so
starts with "----BEGIN TRUSTED CERTIFICATE-----", rather than common
"-----BEGIN CERTIFICATE-----".
Nginx will report error:
PEM routines:PEM_read_bio:no start line
Internally, nginx uses openssl's API "SSL_load_client_CA_file()" to load
the cert and report this error.
So it's a bug, expected or I mis-configure somewhere?
Thanks.
Posted at Nginx Forum: http://forum.nginx.org/read.php?2,220897,220897#msg-220897
More information about the nginx
mailing list