Sounds right to me.
I just don't understand why they're pinning the intermediate certificate. That's a recipe for failure.
Sounds right to me.
I just don't understand why they're pinning the intermediate certificate. That's a recipe for failure.
There also isn't any need to do that, as their fallback ACME client (for which the intermediate pinning was build) outputs the complete chain when issuing a certificate. No need to pin the intermediate at all. I replied as such on that Github commit.
Thank you for opening this thread, it helped solving my problem.
Thank you very much for posting the solution, it helped solving my problem.
Welcome to the Let's Encrypt Community
You're quite welcome!
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.