nginxconfig.io Why ssl_trusted_certificate directive isn't defined in server block when I choose other type of certificate than Let's Encrypt?

Why ssl_trusted_certificate directive isn't defined in server block when I choose other type of certificate than Let's Encrypt?

Open dominikkrulak opened this issue 2 years ago • 0 comments

Help request

Let's say I choose not to use Let's Encrypt certificate but any other paid certificate for domain. When certification type Let's Encrypt is enabled I see ssl_trusted_certificate directive added. When certification type custom certificate is enabled I see no ssl_trusted_certificate directive added.

Why is that?

I try to respond to "Why is that?" question rhetorically.

Is this because you assume that root and Intermediate CA certificates chain is merged to /etc/nginx/ssl/example.com.crt in ssl_certificate directive?

Wouldn't be more elegant to define root and Intermediate CA certificates under ssl_trusted_certificate directive and server certificate under ssl_certificate?

Oct 21 '22 09:10 dominikkrulak

nginxconfig.io nginxconfig.io copied to clipboard

Why ssl_trusted_certificate directive isn't defined in server block when I choose other type of certificate than Let's Encrypt?

Help request

nginxconfig.io
nginxconfig.io copied to clipboard