Unable to get local issuer certificate error in Apache HTTPD for mutual authentication

Solution Verified - Updated -

Issue

When trying to set up Mutual Authentication (two-way SSL) with Apache the following errors are seen:

  • Browser report the following:

    Peer does not recognize and trust the CA that issued your certificate.
    (Error code: ssl_error_unknown_ca_alert)
    
  • ssl_error_logs show the following:

    [Tue Mar 05 14:43:45 2013] [error] [client 99.99.99.99] Certificate Verification: 
    Error (20): unable to get local issuer certificate
    [Tue Mar 05 14:47:40 2013] [error] [client 99.99.99.99] Certificate Verification: 
    Error (20): unable to get local issuer certificate
    

Environment

  • Red Hat Enterprise Linux (RHEL)
  • Red Hat Software Collections (RHSCL)
  • Red Hat JBoss Enterprise Web Server (EWS)
  • Red Hat JBoss Web Server (JWS)
  • Red Hat JBoss Core Services (JBCS)
  • Apache Web Server (HTTPD)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content