I'm currently trying to install a certificate in a Zimbra installation. The certificate is already working with the Apache2 webserver. The CRS was created with the system's openssl installation.
I get the following error:
/opt/zimbra/bin/zmcertmgr verifycrt comm private.key public.crt intermediate.crt
That error is produced by the following call:
error 2 at 2 depth lookup:unable to get issuer certificate
But when doing the same call with the system's openssl installation:
/opt/zimbra/openssl/bin/openssl verify -purpose sslserver -CAfile intermediate.crt public.crt
I get the following output:
/usr/bin/openssl verify -purpose sslserver -CAfile intermediate.crt public.crt
The only difference I could find between the two openssl instances was:
So, eventually the question is: how to solve the problem?
OpenSSL 0.9.8k 25 Mar 2009
OpenSSL 0.9.8o 01 Jun 2010