[Date Prev][Date Next]
[seeking help] unknown CA
I have a php script authenticating user against an ldap server (not under
my control) which I know has no problem.
But when I use it on my newly compiled server, it cannot bind with ldaps
protocol. Packet traces show the following exchange.
- client: Client Hello
- server: Server Hello, Certificate, Server Hello Done
- client: Alert (Level: Fatal, Description: Unknown CA)
On google, it seems to be one of the standard error strings:
" "CA"/"unknown CA"
A valid certificate chain or partial chain was received, but
the certificate was not accepted because the CA certificate could not be
located or couldn't be matched with a known, trusted CA. This message
is always fatal."
My question is, how can I fix this problem? I checked the configuration of
another machine on which this script works perfectly, but cannot easily
find the difference.
Any insight would be appreciated.