To use SSL, the web server that I am using requires the location of a single .pem file (-ssl_cert xyz.pem)
I have a certificate issued by GoDaddy. They gave me the file:
banana.crt
The preceding certificate request was created using a private key I generated
banana.key
Googling seems to suggest that creating a .pem file is as simple as concatenating them.
cat banana.key banana.crt > banana.pem
Unfortunately, starting the server with banana.pem, and visiting it with Safari tells me:
Issued by: Go Daddy Secure Certificate Authority
This certificate was signed by an unknown authority
What's going wrong? Have I or GoDaddy screwed something up in the creation of the certificate, or do I somehow have to mix something from here in to my .pem file?
I'm visiting with a fully up to date OS X Leopard + Safari installation.
Best Answer
Depending on which type of certificate you have, go to https://certs.godaddy.com/Repository.go and download the appropriate intermediate certificate chain (one of the
.crtfiles, most likely this one). Paste that into your PEM file along with your own certificate and key.