Unable to get local issuer certificate error in Apache HTTPD for mutual authentication

Solution Verified - Updated -

Issue

When trying to set up Mutual Authentication (two-way SSL) with Apache the following errors are seen:

  • Browser report the following:

    Peer does not recognize and trust the CA that issued your certificate.
    (Error code: ssl_error_unknown_ca_alert)
    
  • ssl_error_logs show the following:

    [Tue Mar 05 14:43:45 2013] [error] [client 99.99.99.99] Certificate Verification: 
    Error (20): unable to get local issuer certificate
    [Tue Mar 05 14:47:40 2013] [error] [client 99.99.99.99] Certificate Verification: 
    Error (20): unable to get local issuer certificate
    

Environment

  • Red Hat Enterprise Linux (RHEL)
  • Red Hat Software Collections (RHSCL)
  • Red Hat JBoss Enterprise Web Server (EWS)
  • Red Hat JBoss Web Server (JWS)
  • Red Hat JBoss Core Services (JBCS)
  • Apache Web Server (HTTPD)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In