"unsupported certificate purpose" error when connecting to Apache http 2.x with Mutual Authentication

Solution Verified - Updated -

Issue

Mutual Authentication (two-way SSL) configuration in Apache httpd is not allowing (reponse http status 403 - forbidden) a clients to access an application. The error in the Apache httpd error_log is:

AH02039: Certificate Verification: Error (26): unsupported certificate purpose

Environment

  • Red Hat Enterprise Linux (RHEL)
    • 7.x
    • 8.x
  • Apache httpd
    • 2.2
    • 2.4

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content