SSL_CTX_add_extra_chain_cert(3) OpenSSL SSL_CTX_add_extra_chain_cert(3)NAME
SSL_CTX_add_extra_chain_cert - add certificate to chain
long SSL_CTX_add_extra_chain_cert(SSL_CTX ctx, X509 *x509)
SSL_CTX_add_extra_chain_cert() adds the certificate x509 to the certificate chain presented together with the certificate. Several
certificates can be added one after the other.
When constructing the certificate chain, the chain will be formed from these certificates explicitly specified. If no chain is specified,
the library will try to complete the chain from the available CA certificates in the trusted CA storage, see
The x509 certificate provided to SSL_CTX_add_extra_chain_cert() will be freed by the library when the SSL_CTX is destroyed. An application
should not free the x509 object.
Only one set of extra chain certificates can be specified per SSL_CTX structure. Different chains for different certificates (for example
if both RSA and DSA certificates are specified by the same server) or different SSL structures with the same parent SSL_CTX cannot be
specified using this function.
SSL_CTX_add_extra_chain_cert() returns 1 on success. Check out the error stack to find out the reason for failure otherwise.
SEE ALSO ssl(3), SSL_CTX_use_certificate(3), SSL_CTX_set_client_cert_cb(3), SSL_CTX_load_verify_locations(3)1.0.1i 2014-08-10 SSL_CTX_add_extra_chain_cert(3)
Does anyone know if it's possible to restrict access to apache webserver with certificates?
What I want is that if a user has a certificate in his browser then he get's access, if not show error or another page.
I would be very happy if someone knew!
/D (2 Replies)
I want to automate the process of importing a SSL certificate name *.cer to cacerts through perl script. both the certificates belong to same folder.
The usual way of doing it is by executing the below command which imports the key name certnew.cer to cacerts in the same folder.
... (4 Replies)
hello all, first of all i'm not sure this is correct place to post but i could not find a place about certificates and exams so this seemed most appropriate.
i'm interested in CEH if it's any good and where to take exams, and any books you can forward me to. i do have one book but it's couple... (3 Replies)
Is there a way I can execute an installp command in debug mode, so that I can see whats happening when a fileset is being installed or updated? (What files are being replace etc etc).
I have an installp command failing for unknown reason. (7 Replies)
I have been attempting to automate the addition of SSL certificates to keychains on a MAC using the "security" command. I've noticed two things, 1 of which I don't understand.
1. If I use something like "security add-trusted-cert -d -k /System/Library/Keychains/SystemRootCertificates... (1 Reply)
I have some questions about ssl certificates.
I looked at SSL providers and saw that they are providing 2 types of certificates: per server or per domain.
my server host name is: srv1.example.com
I have a smtp, imap, web server on this box. but all services accessed by different... (1 Reply)
I have Apache running with the certificates installed.
I need a "unix curl" command to download and display remote server certificate.
Note: Apache has ""SSLVerifyClient require" set in its configuration. (3 Replies)
I need a piece of code in perl which can read the file having multiple ssl certificates in text format one after the other as shown below. I need to parse this file and find out the common names of each of ssl certs it contains.
-----BEGIN CERTIFICATE-----... (4 Replies)
I am working on a Nginx + Apache installation for learning purposes, and just got to the point of installing a self-signed certificate for securing some pages that will be used to send "sensitive" information such as login credentials. So far so good.
What a I want to know is how can... (2 Replies)
Hey everyone, another question on certificate chains...
When a site applies for an ssl certificate, do they have to apply to a root CA? or can they apply to a root, or one of the many smaller CA companies? Then once they obtain a cert from that smaller CA, the company gets it's cert signed by a... (1 Reply)
0. Firstly, I am not very Unix savvy. For instance, I don't know what the purpose of certificates are, and I don't know if this is the right forum for this question.
1. The problem: I can't use homebrew or use git. Running git pull, for instance, gives the following error:
... (2 Replies)
I am planning to find the list of certificates(WEBshpere/MQ) on a servers.
My certificates are either stored in (.jks) / (.pem)/ (.cer) . But some of the certificates are stored without these file formats. I tried using find command but unless I give the file name its difficult for... (4 Replies)
Recently we were faced with a critical problem whereby our company website (E-Commerce platform) was not accessible. It threw a 301/302 error. This platform is used for subscribers to purchase reloads, subscribe to new plans and so forth.
When we ran a curl command to troubleshoot further, this... (1 Reply)