nginx configuration with self signed certificates - getting error

Maxim Dounin mdounin at
Tue Dec 29 13:58:32 UTC 2015


On Mon, Dec 28, 2015 at 04:50:23PM -0500, sumeetmaru wrote:

> Please if anyone could take a look and reply?

Messages you are seeing suggests that you've failed to provide 
proper trusted certificates via proxy_ssl_trusted_certificate and 
ssl_client_certificate files.

An example configuration which demonstrates how to configure 
mutual authentication using a self-signed certificate:

    server {
        listen 8080;

        location / {

            proxy_ssl_verify on;
            proxy_ssl_trusted_certificate test.crt;
            proxy_ssl_name "";

            proxy_ssl_certificate test.crt;
            proxy_ssl_certificate_key test.key;

    server {
        listen 8443 ssl;

        ssl_certificate test.crt;
        ssl_certificate_key test.key;

        ssl_verify_client on;
        ssl_client_certificate test.crt;

        location / {
            return 204;

Maxim Dounin

More information about the nginx mailing list