Security Guide (Supporting ADX v03.1.00) Instruction Manual
Brocade Virtual ADX Security Guide 123
53-1003250-01
Configuring SSL on a Brocade Virtual ADX
6
Figure 10 shows the certificate hierarchy.
FIGURE 10 Certificate Hierarchy
The root CA certificate "OS level 0 CA" was not included in the chain because it was already trusted
by the client, and the client accepted the chain, as shown in Figure 10.
Common Mistakes
The following mistakes often occur when dealing with server certificates and CA chains:
• Symptom: The certificate chain is not properly uploaded.
Solution: To verify that the certificate chain is properly uploaded on Brocade Virtual ADX,
connect to the BP console and enter the show ssl certificate cert-name command. Make sure
that all of the intermediate CA certificates are included.
d3:c2:64:4d:24:41:5a:2c:17:3d:34:27:8b:0c:25:60:6b:3a:
86:f6:54:fc:8d:31:08:3b:dd:4c:cb:46:fb:47:a3:e4:23:3d:
82:33:84:d2:fb:81:05:61:95:09:98:a4:25:f0:55:eb:80:0c:
32:69:48:cf:41:7c:36:2d:d7:c0:02:79:a1:7b:4d:28:4c:84:
64:68:3c:8a:af:28:5f:f6:78:1e:31:d4:5a:2c:60:20:12:99:
5c:e3:df:59:01:79:7c:20:c8:f5:ab:75:e6:ab:db:de:2a:e7:
be:4d:a1:9d:d5:5a:7c:9a:22:14:ca:7b:31:9d:48:d8:62:3a:
ab:97:15:6b:4f:13:3e:35:c0:fb:82:57:20:e7:08:03:33:28:
19:20:16:24:28:98:d4:f7:cf:0b:4b:0c:7e:6a:88:54:b0:06:
2e:df:b3:6e:ea:8e:4a:a0:60:78:73:40:a7:75:80:ef:96:cb:
f1:03:96:83:cf:1a:38:a7:33:82:d5:2e:e7:51:93:06:59:b5:
95:16:a4:34:d4:63:e7:9f:6e:7b:aa:30:13:ed:3e:47:a1:b9:
f8:56:d6:11