How to get the public certificate
Hello I am trying to use the openssl s_client option to see the public file of one host which is running on port 1234. Please note this is not web server but a application which uses the SSL cert. How can I see the cert of this app on host on 1234? I am getting below errors. Thanks!
user@hostname:~$ openssl s_client -connect example.company.com:1234
CONNECTED(00000003)
depth=1 /C=US/ST=California/L=San Jose/O=Company, Inc./OU=IT/CN=IT DEV CA/emailAddress=webmasters@company.com
verify error:num=19:self signed certificate in certificate chain
verify return:0
27556:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure:s3_pkt.c:1102:SSL alert number 40
27556:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib.c:188:
effectively you ARE seeing it - its the line:
depth=1 /C=US/ST=California/L=San Jose/O=Company, Inc./OU=IT/CN=IT DEV CA/emailAddress=webmasters
however, if you want to see the full cert, add
-showcerts
to the command :)
depth=1 /C=US/ST=California/L=San Jose/O=Company, Inc./OU=IT/CN=IT DEV CA/emailAddress=webmasters
however, if you want to see the full cert, add
-showcerts
to the command :)
ASKER
Hi DaveHow, I tried with -showcerts but still getting the same error.
verify error:num=19:self signed certificate in certificate chain
verify return:0
29827:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure:s3_pkt.c:1102:SSL alert number 40
29827:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib.c:188:ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you! :-)
this is nor really my source of interest, but did you already try to access the https://example.company.com:1234
in a webbrowser, even if it is not a web server? Maybe the browser can handle it, too?
Good luck
gnurl