How it could be, we already buy SSL Certificate from godaddy.com and put it in the ngnix configuration file. And my desktop browser didn't complain anything. Something is not right I know.
After google, it got this page - http://nginx.org/en/docs/http/configuring_https_servers.html#chains
The key point is this line "This occurs because the issuing authority has signed the server certificate using an intermediate certificate that is not present in the certificate base of well-known trusted certificate authorities which is distributed with a particular browser". My English isn't so well to understand this kind of compound sentence . I just guess and translate it as, The android browser didn't play well with godaddy.
Ok, then we need the cure, follow the step, I copy gb_bundle.crt from godaddy. then put after the original crt file. Then reload. Hola, the warning is gone. By the way, there is website could test your SSL certificate setting - https://www.ssllabs.com/ssltest/index.html
Lesson learn: System administration take lots of time.
No comments:
Post a Comment