Using proxy_ssl_verify getting error: upstream SSL certificate verify error: (20:unable to get local issuer certificate)

Maxim Dounin mdounin at
Sun Aug 17 17:32:14 UTC 2014


On Sun, Aug 17, 2014 at 12:21:41AM -0400, justink101 wrote:

> Setting:
> proxy_ssl_verify_depth 2;
> Fixed the issue. Can somebody explain why this is needed and why the default
> setting is 1? I am using a standard wildcard SSL certificate from GoDaddy.

The default is in line with ssl_verify_depth 
( and assumes you directly 
control root of the certificates being verified.

Maxim Dounin

More information about the nginx mailing list