Forum Discussion
nathe
Aug 19, 2014Cirrocumulus
The cert and chain on the server side will create a trust but you would still need to trust either the intermediate or Root CA on the client side too. By adding the chain doesn't necessarily provide trust to the certificate. It really only tells the client which certs to use in the chain to enable trust.
You can use this command on the ltm to check that the cert and chain are working, just in case.
openssl verify -purpose sslserver -CAfile /config/ssl/ssl.crt/test_bundle.crt /config/ssl/ssl.crt test_server.crt
This is how I understand it anyway.
Rgds
N