I have just renewed an existing SSL certificate on Apache using Mod-SSL.
I received an error when testing in IE stating:
“This certificate cannot be verified up to a trusted certification authority”
When I clicked to view the cert and chose the Certification Path, there is no chain validating the CA’s.
So I looked and it appears that the CA bundle that was delivered with my crt is different than the existing one I had been using. Ok, I can update the ca-bundle and restart, but I still have the same error.
My old ca-bundle had two keys stored inside, while this new one only has one.
Am I missing part of this bundle, has something changed, or am I doing something wrong??
Hi chumprock,
Welcome to the forums!
You can find the intermediate certs here;
https://support.comodo.com/index.php?_m=downloads&_a=view&parentcategoryid=1&pcid=0&nav=0
Depending on the type of certificate you bought you could be needing different intermediate certs.
For a EV cert this is:
Root CA Certificate - AddTrustExternalCARoot.crt
Intermediate CA Certificate - COMODOAddTrustServerCA.crt
Intermediate CA Certificate - COMODOExtendedValidationSecureServerCA.crt
Your COMODO EV Multi-Domain SSL Certificate
For a DV cert this is:
Root CA Certificate - AddTrustExternalCARoot.crt
Intermediate CA Certificate - COMODOHigh-AssuranceSecureServerCA.crt
Your PremiumSSL
If all is well this info should also be in your order confirmation you received over email.