user3204476
Reputation: 63
Intermediate and Root certificate files
I've recently set up SSL on my Apache install. When I received the certificate back from my supplier, there were two files: root.crt and intermediate.crt. My understanding is that in the VirtualHost you should refer to the intermediate cert only. Is this correct? And if so, what is the purpose of the root version?
Thanks.
Upvotes: 2
Views: 1558
Answers (1)
pedrofb
Reputation: 39241
You only need to configure in the server the intermediate certificates. Root certificates should not be included. It is assumed that the client must have the root certificate in their truststore.
Including it in the certification chain will increase the size of the SSL Handshake with no purpose because it has to be ignored by client
Upvotes: 2
Related Questions
- hosting multiple SSL certs on apache
- Correct way to import root and intermediate certificates in Java cacerts
- Can verify certificate only with intermediate and root certificate in one file
- Intermediate Certificates in SSL
- In SSL trust hierarchies, what is used to sign an intermediate certificate and how does this relate to the root certificate?
- Apache SSL Certificate
- How to chain a SSL server certificate with the intermediate and root CA certificates?
- SSL intermediate certificates
- SSL Certificate Files and Usage
- SSL certificate installing