SSL2Buy 为我提供了三个文件:
mysite.ssl2.crtmysite.ssl2.intermediatemysite.ssl2.key我从AWS收到的错误是这样的(当我尝试将中间文件作为证书链时):
Unable to validate certificate chain. The certificate chain must start with the immediate signing certificate, followed by any intermediaries in order. The index within the chain of the invalid certificate is: -1 (Service: AmazonIdentityManagement; Status Code: 400; Error Code: MalformedCertificate; Request ID: <redacted>)我的网站已经配备了适当的 SSL。我只是想向 API 网关提供证书链。
-----BEGIN CERTIFICATE-----
[server cert]
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
[intermediate cert]
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
[root cert]
-----END CERTIFICATE-----
我刚刚删除了列表中的第一个,效果很好
如果您想带着证书进城验证它们,这里有一个使用 openssl 的优秀指南:
https://acquia.my.site.com/s/article/360004119234-Verifying-the- SSL 证书的有效性