Forum Discussion
Thanks Nathan for coming back.
I am totally with you, but I still can't understand why I can't see F5 presenting the chain to me(which is configured with two certs): openssl s_client -connect x.x.x.x:443 -key /config/filestore/files_d/www-qa_d/certificate_key_d/:test.key -cert /config/filestore/files_d/www-qa_d/certificate_d/:test.crt
CONNECTED(00000003) depth=0 /C=US/ST=.....
verify error:num=20:unable to get local issuer certificate
verify return:1 depth=0 /C=US/ST=....
verify error:num=27:certificate not trusted verify return:1 depth=0 /C=US/ST=N.... verify error:num=21:unable to verify the first certificate
verify return:1
Certificate chain 0 s:/C=US/ST=....
i:/C=US/O=Thawte, Inc./CN=Thawte SSL CA
I can see that when I try it connect from F5 itself to VIP, cert is not trusted anyway.
After running openssl verify command, I'm getting below error:
"error 20 at 0 depth lookup:unable to get local issuer certificate"
Do you recognize this error?