PKCS12 not importing the CA chain #5
Description
PKCS12 import to update the https listener certificate via certandkey_secureport variable is not importing the CA cert chain.
Steps to reproduce:
- Create p12 file using the openssl
openssl pkcs12 -inkey <key> \
-in <cert> \
-export -out cert.p12 \
-password pass:<put password> \
-chain -CAfile <CA cert chain pem> \
-name OAuthCertificate
-
Then replace it with certandkey_secureport.
-
Once the endpoint is up and running, inspect the certs via the openssl command
openssl s_client -showcerts -servername <host name> -connect <host name>:<port>