Using proxy_ssl_verify getting error: upstream SSL certificate verify error: (20:unable to get local issuer certificate)
Maxim Dounin
mdounin at mdounin.ru
Sun Aug 17 17:32:14 UTC 2014
Hello!
On Sun, Aug 17, 2014 at 12:21:41AM -0400, justink101 wrote:
> Setting:
>
> proxy_ssl_verify_depth 2;
>
> Fixed the issue. Can somebody explain why this is needed and why the default
> setting is 1? I am using a standard wildcard SSL certificate from GoDaddy.
The default is in line with ssl_verify_depth
(http://nginx.org/r/ssl_verify_depth) and assumes you directly
control root of the certificates being verified.
--
Maxim Dounin
http://nginx.org/
More information about the nginx
mailing list