Forum Discussion
Mar 27, 2017
Hi,
here is a way to get it done in TMOS v11+. Copy the chain file (single intermediate CA file or bundle in PEM format) asintermediate_ca.crt
to the /config/httpd/conf/ssl.crt/
directory and set permissions, i.e.:
chmod 0644 /config/httpd/conf/ssl.crt/intermediate_ca.crt
Now declare it to be used as chain file to be delivered along with the device certificate during the initial handshake and restart the WebUI:
tmsh modify / sys httpd ssl-certchainfile /etc/httpd/conf/ssl.crt/intermediate_ca.crt
bigstart restart httpd
Thanks, Stephan