<div dir="ltr"><div>Without Intermediate Certs, I get</div><div><p style="font-size:12.8px"><!-- SSL authority chain (for intermediate certs) --></p><p style="font-size:12.8px"> <key>SSLAuthorityChain</key></p><p style="font-size:12.8px"></p><p style="font-size:12.8px"><b> <string></string></b></p><p style="font-size:12.8px"><span style="background-color:rgb(255,0,0)">41275:error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure:/SourceCache/OpenSSL098/OpenSSL098-52.40.1/src/ssl/s23_clnt.c:593:</span></p></div><div>------------------------------------------------ Different Error --------------------------------</div><div><p style="font-size:12.8px">With Intermediate Certs:</p><p style="font-size:12.8px"><!-- SSL authority chain (for intermediate certs) --></p><p style="font-size:12.8px"> <key>SSLAuthorityChain</key></p><p style="font-size:12.8px"></p><p style="font-size:12.8px"><b> <string>/etc/ssl/myProject/PositiveSSL.ca-bundle</string></b></p></div><div><br></div><span style="background-color:rgb(255,0,0)">java.security.cert.CertPathValidatorException: Trust anchor for certification path not found.</span><br></div><div class="gmail_extra"><br><div class="gmail_quote">On Sun, Mar 27, 2016 at 7:12 PM, Gaurav Jain <span dir="ltr"><<a href="mailto:monkeyfdude@gmail.com" target="_blank">monkeyfdude@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Hi,<div><br></div><div>Thank you for creating caldavd.</div><div><br></div><div>I try to configure SSL with Caldavd. I am having issues configuring SSLAuthortiyChain.</div><div><br></div><div>I use positive SSL which gave following file for intermediate chain</div><div><br></div><div>
<p><span>AddTrustExternalCARoot.crt </span></p><p>COMODORSAAddTrustCA.crt </p>
<p><span>COMODORSADomainValidationSecureServerCA.crt</span></p><p><span><br></span></p><p><span>I created a file </span>PositiveSSL.ca-bundle </p><p>cat COMODORSADomainValidationSecureServerCA.crt COMODORSAAddTrustCA.crt AddTrustExternalCARoot.crt > PositiveSSL.ca-bundle </p><p><br></p><p><span> </span><span><!-- SSL authority chain (for intermediate certs) --></span></p><p><span> </span><span><key></span><span>SSLAuthorityChain</span><span></key></span></p><p>
</p><p><span> </span><span><string></span><span>/etc/ssl/myProject/PositiveSSL.ca-bundle</span><span></string></span></p><p><span><br></span></p><p>But I get "HandShake Failed" error.</p><p><span>openssl s_client -connect <a href="http://example.com:8443" target="_blank">example.com:8443</a> -CAfile ~/ssl/comodo/PositiveSSL.ca-bundle </span></p><p><span>CONNECTED(00000003)</span></p><p>
</p><p><span>41275:error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure:/SourceCache/OpenSSL098/OpenSSL098-52.40.1/src/ssl/s23_clnt.c:593:</span></p><p><span><br></span></p><p><span>Would you be able to point me to issue?</span></p></div></div>
</blockquote></div><br></div>