I'm trying to set up Gmail using a desktop client, via IMAP. It works, except that my client is complaining about the SSL cert:
Issuer: CN=Google Internet Authority,O=Google Inc,C=US
Subject: CN=imap.gmail.com,O=Google Inc,L=Mountain View,ST=California,C=US
Fingerprint: f4:3c:f0:30:6a:03:d4:5b:c8:5b:6e:11:ed:19:1d:a6
Signature: BAD
It seems odd that Google would use a self signed cert here, but a cert signed by Thawte on their website. The Google CA is not in my /etc/ssl/certs. Does anyone know if this is the correct cert? Is my trusted CA list just hopelessly out of date?
Best Answer
The IMAP cert is signed by a "Google Internet Authority" cert which is in turn signed by Equifax your client is not following the certificate chain of trust properly.