Nailed it. I appended the saved peer certificate with the certificate of the CA. Why Stunnel needs it with verify = 4 is unknown.
Thomas
On 6/12/2013 12:27 PM, Michal Trojnara wrote:
On 2013-06-10 00:06, Thomas Eifert wrote:
As soon as that event occurred, I deleted the old certificate, then used the "save peer certificate" function of Stunnel to get the updated one.
Did you update your configuration file to use the new certificate (CAfile option)?
CERT: Verification error: unable to get local issuer certificate 2013.06.09 16:37:46 LOG4[608:2336]: Certificate check failed: depth=0
This is what your error suggests...
Anyone have any ideas or have run into this issue?
It would be much easier to help you if you included your configuration file and a larger sample of logs.
Best regards, Michal Trojnara
stunnel-users mailing list stunnel-users@stunnel.org https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users