[lug] Understanding a SSL/TLS Certificate Issue
Jed S. Baer
blug at jbaer.cotse.net
Thu Jun 18 17:40:07 MDT 2020
On Thu, 18 Jun 2020 17:15:11 -0600
Jed S. Baer wrote:
> > Replacing an intermediate cert with an unexpired one won't help since
> > it will break the chain. The cert will have to be re-issued with new
> > certs all the way from the replaced cert to the leaf.
>
> I can't connect that dot, since my understanding of what David wrote is
> that it's only the root CA certs that are operative in my local store
However, if the chain from COTSE is good, and references an unexpired
ROOT CA which is not in my local store, and thus I need to obtain it,
then it makes sense.
More information about the LUG
mailing list